Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Bonjour j'ai CASifié Alfresco via un serveur distant...

tegyat
Champ in-the-making
Champ in-the-making

‎06-14-2007 11:52 AM

Bonjour j'ai CASifié Alfresco via un serveur distant machine.s_domain.domaine
Quand j'appelle Alfresco je suis correctement redirigé vres le CAS server qui me renvoi le formulaire d'authentification et valide le compte puis me redirige vers Alfresco qui me renvoie une erreur systeme:   
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target 
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150) 
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1518) 
at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:174) 
at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:168) 
at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:848) 
at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:106) 
at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:495) 
at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Handshaker.java:433) 
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:818) 
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1030) 
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1057) 
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1041) 
at sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:402) 
at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.jav... 
at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:938) 
at sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(HttpsURLConnectionImpl.java:234) 
at edu.yale.its.tp.cas.util.SecureURL.retrieve(SecureURL.java:70) 
at edu.yale.its.tp.cas.client.ServiceTicketValidator.validate(ServiceTicketValidator.java:212) 
at edu.yale.its.tp.cas.client.filter.CASFilter.getAuthenticatedUser(CASFilter.java:219) 
at edu.yale.its.tp.cas.client.filter.CASFilter.doFilter(CASFilter.java:184) 
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202) 
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173) 
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) 
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:178) 
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126) 
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105) 
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107) 
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148) 
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:869) 
at org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:664) 
at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:527) 
at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:80) 
at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684) 
at java.lang.Thread.run(Thread.java:595) 
Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target 
at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:221) 
at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:145) 
at sun.security.validator.Validator.validate(Validator.java:203) 
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:172) 
at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(SSLContextImpl.java:320) 
at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:841) 
… 29 more 
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target 
at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:236) 
at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:194) 
at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:216) 
… 34 more
j'ai besoin de votre aide.
Merci.
Labels:
0 Kudos
1 REPLY 1

lme
Champ in-the-making
Champ in-the-making

‎06-15-2007 02:24 AM

Bonjour,

Il faut tout simplement que tu ajoutes le certificat utilisé pour le SSL du serveur CAS dans le keystore de la JDK qui est utilisée par Alfresco. Le client CAS contacte le serveur CAS en HTTPS pour valider le ticket, et s'il ne reconnait pas le certificat il renvoit ce genre d'erreur.
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC