Configuring outbound SSL connection from JBoss EAP 6

Solution Verified - Updated -

Issue

  • Which trust keystore jBoss uses to hit external HTTPS web site ?
  • Getting the following exception :
SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unableto find valid certification path to requested target
        at sun.security.ssl.Alerts.getSSLException(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.SSLSocketImpl.fatal(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.Handshaker.fatalSE(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.Handshaker.fatalSE(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.ClientHandshaker.processMessage(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.Handshaker.processLoop(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.Handshaker.process_record(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.SSLSocketImpl.writeRecord(Unknown Source) [jsse.jar:1.7.0_05]
        at sun.security.ssl.AppOutputStream.write(Unknown Source) [jsse.jar:1.7.0_05]
        at java.io.BufferedOutputStream.flushBuffer(Unknown Source) [rt.jar:1.7.0_05]
        at java.io.BufferedOutputStream.flush(Unknown Source) [rt.jar:1.7.0_05]
  • How to know which keystore is used when doing outbound SSL? And how do I configure it?
  • How to configure a JBoss EAP 6 passing the keystore to remote server?
  • Getting, sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target while making outbound SSL calls.
  • How to carry out SSL mutual authentication between our JBoss server and a webservice when JBoss is acting as a client?
  • I added a certificate to the jre cacerts and added that path to the run.bat -Djavax.net.ssl.trustStore=D:\apps\java\jre\lib\security\cacerts now everytime I boot the service it throws exception.
  • Our development team has created an application that is running in our jboss EAP domain, and now we have been given a certificate file to include in the profile. How to connect to external HTTPS urls from JBoss EAP?
  • We need to implement an https call to an external system that make use of a commercial certificate (Thawte.com). Do we need to import the root certificate to the keystore and that installed at the destination server?

Environment

  • Red Hat JBoss Enterprise Application Platform (EAP)
    • 6.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.