Skip to main content

This content has been archived and is no longer being updated. Links may not function; however, this content may be relevant to outdated versions of the product.

Support Article

SSLHandshakeException during DMa startup

SA-3551

Summary



Deployment Manager(DMa) is failing to start when attempted to start from WebSphere admin console. Getting below error messages:

javax.net.ssl.SSLHandshakeException - The client and server could not negotiate the desired level of security. Reason: com.ibm.jsse2.util.j: PKIX path building failed: java.security.cert.CertPathBuilderException: unable to find valid certification path to requested target


Error Messages



javax.net.ssl.SSLHandshakeException - The client and server could not negotiate the desired level of security. Reason: com.ibm.jsse2.util.j: PKIX path building failed: java.security.cert.CertPathBuilderException: unable to find valid certification path to requested target


Steps to Reproduce



Login to WebSphere Admin Consiole then stop and start the DMa node.


Root Cause



The signer is not added to the local trust store.


Resolution



Follow the below steps for using Retrieve from port option in the administrative console to retrieve the certificate 
  1. Log into the administrative console. 
  2. Expand Security and click SSL certificate and key management. Under Configuration settings, click Manage endpoint security configurations.
  3. Select the appropriate outbound configuration to get to the (cell) scope.
  4. Under Related Items, click Key stores and certificates and click the CellDefaultTrustStore key store.
  5. Under Additional Properties, click Signer certificates and  Retrieve From Port.
  6. In the Host field, enter DMa application running host name and in the Port field enter DMa application running http port number and enter appropriate values in Alias field.
  7. Click Retrieve Signer Information.  
  8. Verify that the certificate information is for a certificate that you can trust.
  9. Click Apply and Save

Published January 31, 2016 - Updated October 8, 2020

Was this useful?

0% found this useful

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.

Did you find this content helpful?

Want to help us improve this content?

We'd prefer it if you saw us at our best.

Pega Community has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice
Contact us