Can some one help me to debug this On Fri, Aug 24, 2018, 18:18 David Curry <david.cu...@newschool.edu> wrote:
> javax.net.ssl.SSLHandshakeException: > java.security.cert.CertificateException: No subject alternative names > matching IP address 127.0.0.1 found > > Your SSL certificate(s) is/are not set up correctly. > > -- > > DAVID A. CURRY, CISSP > *DIRECTOR OF INFORMATION SECURITY* > INFORMATION TECHNOLOGY > > 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003 > +1 212 229-5300 x4728 • david.cu...@newschool.edu > > [image: The New School] > > > On Thu, Aug 23, 2018 at 11:59 PM vivekanand yaram < > yaramvivekan...@gmail.com> wrote: > >> I m getting the below error CAS management console after login >> authentication. Please help >> >> >> javax.net.ssl.SSLHandshakeException: >> java.security.cert.CertificateException: No subject alternative names >> matching IP address 127.0.0.1 found >> at sun.security.ssl.Alerts.getSSLException(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.ssl.SSLSocketImpl.fatal(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.ssl.Handshaker.fatalSE(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.ssl.Handshaker.fatalSE(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown >> Source) ~[?:1.8.0_181] >> at sun.security.ssl.ClientHandshaker.processMessage(Unknown >> Source) ~[?:1.8.0_181] >> at sun.security.ssl.Handshaker.processLoop(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.ssl.Handshaker.process_record(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown >> Source) ~[?:1.8.0_181] >> at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source) >> ~[?:1.8.0_181] >> at sun.net.www.protocol.https.HttpsClient.afterConnect(Unknown >> Source) ~[?:1.8.0_181] >> at >> sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown >> Source) ~[?:1.8.0_181] >> at >> sun.net.www.protocol.http.HttpURLConnection.getInputStream0(Unknown Source) >> ~[?:1.8.0_181] >> at >> sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source) >> ~[?:1.8.0_181] >> at >> sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(Unknown >> Source) ~[?:1.8.0_181] >> at >> org.jasig.cas.client.util.CommonUtils.getResponseFromServer(CommonUtils.java:431) >> [cas-client-core-3.4.1.jar!/:3.4.1] >> at >> org.jasig.cas.client.validation.AbstractCasProtocolUrlBasedTicketValidator.retrieveResponseFromServer(AbstractCasProtocolUrlBasedTicketValidator.java:41) >> [cas-client-core-3.4.1.jar!/:3.4.1] >> at >> org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:193) >> [cas-client-core-3.4.1.jar!/:3.4.1] >> at >> org.pac4j.cas.credentials.authenticator.CasAuthenticator.validate(CasAuthenticator.java:61) >> [pac4j-cas-2.2.0.jar!/:?] >> at >> org.pac4j.cas.client.direct.DirectCasClient.retrieveCredentials(DirectCasClient.java:68) >> [pac4j-cas-2.2.0.jar!/:?] >> at >> org.pac4j.cas.client.direct.DirectCasClient.retrieveCredentials(DirectCasClient.java:37) >> [pac4j-cas-2.2.0.jar!/:?] >> at >> org.pac4j.core.client.DirectClient.getCredentials(DirectClient.java:44) >> [pac4j-core-2.2.0.jar!/:?] >> at >> org.pac4j.core.engine.DefaultSecurityLogic.perform(DefaultSecurityLogic.java:113) >> [pac4j-core-2.2.0.jar!/:?] >> at >> org.pac4j.springframework.web.SecurityInterceptor.preHandle(SecurityInterceptor.java:65) >> [spring-webmvc-pac4j-2.0.0.jar!/:?] >> at >> org.springframework.web.servlet.HandlerExecutionChain.applyPreHandle(HandlerExecutionChain.java:133) >> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:962) >> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:901) >> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:970) >> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:861) >> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:687) >> [javax.servlet-api-3.1.0.jar!/:3.1.0] >> at >> org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:846) >> [spring-webmvc-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) >> [javax.servlet-api-3.1.0.jar!/:3.1.0] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:231) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) >> [tomcat-embed-websocket-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.springframework.boot.web.filter.ApplicationContextHeaderFilter.doFilterInternal(ApplicationContextHeaderFilter.java:55) >> [spring-boot-1.5.8.RELEASE.jar!/:1.5.8.RELEASE] >> at >> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apereo.inspektr.common.web.ClientInfoThreadLocalFilter.doFilter(ClientInfoThreadLocalFilter.java:66) >> [inspektr-common-1.8.0.GA.jar!/:1.8.0.GA] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.springframework.boot.actuate.trace.WebRequestTraceFilter.doFilterInternal(WebRequestTraceFilter.java:110) >> [spring-boot-actuator-1.5.8.RELEASE.jar!/:1.5.8.RELEASE] >> at >> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:99) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.springframework.web.filter.HttpPutFormContentFilter.doFilterInternal(HttpPutFormContentFilter.java:108) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.springframework.web.filter.HiddenHttpMethodFilter.doFilterInternal(HiddenHttpMethodFilter.java:81) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.springframework.boot.actuate.autoconfigure.MetricsFilter.doFilterInternal(MetricsFilter.java:106) >> [spring-boot-actuator-1.5.8.RELEASE.jar!/:1.5.8.RELEASE] >> at >> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:197) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) >> [spring-web-4.3.14.RELEASE.jar!/:4.3.14.RELEASE] >> at >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:199) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:496) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:140) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:81) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:342) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:803) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:790) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1459) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at >> org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown >> Source) [?:1.8.0_181] >> at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown >> Source) [?:1.8.0_181] >> at >> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) >> [tomcat-embed-core-8.5.28.jar!/:8.5.28] >> at java.lang.Thread.run(Unknown Source) [?:1.8.0_181] >> Caused by: java.security.cert.CertificateException: No subject >> alternative names matching IP address 127.0.0.1 found >> at sun.security.util.HostnameChecker.matchIP(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.util.HostnameChecker.match(Unknown Source) >> ~[?:1.8.0_181] >> at sun.security.ssl.X509TrustManagerImpl.checkIdentity(Unknown >> Source) ~[?:1.8.0_181] >> at sun.security.ssl.X509TrustManagerImpl.checkIdentity(Unknown >> Source) ~[?:1.8.0_181] >> at sun.security.ssl.X509TrustManagerImpl.checkTrusted(Unknown >> Source) ~[?:1.8.0_181] >> at >> sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown Source) >> ~[?:1.8.0_181] >> ... 82 more >> >> -- >> - Website: https://apereo.github.io/cas >> - Gitter Chatroom: https://gitter.im/apereo/cas >> - List Guidelines: https://goo.gl/1VRrw7 >> - Contributions: https://goo.gl/mh7qDG >> --- >> You received this message because you are subscribed to the Google Groups >> "CAS Community" group. >> To unsubscribe from this group and stop receiving emails from it, send an >> email to cas-user+unsubscr...@apereo.org. >> To view this discussion on the web visit >> https://groups.google.com/a/apereo.org/d/msgid/cas-user/0f7e7ad8-9da4-4bcf-b9d2-3bff63abc237%40apereo.org >> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/0f7e7ad8-9da4-4bcf-b9d2-3bff63abc237%40apereo.org?utm_medium=email&utm_source=footer> >> . >> > -- > - Website: https://apereo.github.io/cas > - Gitter Chatroom: https://gitter.im/apereo/cas > - List Guidelines: https://goo.gl/1VRrw7 > - Contributions: https://goo.gl/mh7qDG > --- > You received this message because you are subscribed to the Google Groups > "CAS Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to cas-user+unsubscr...@apereo.org. > To view this discussion on the web visit > https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAMeo%3DS_4PJ2zUXOcjGW4ScpSaREtQNF-PrdWoChdHS5Ew%40mail.gmail.com > <https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAMeo%3DS_4PJ2zUXOcjGW4ScpSaREtQNF-PrdWoChdHS5Ew%40mail.gmail.com?utm_medium=email&utm_source=footer> > . > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CABprqJUy2qK%3D0yjc3zApAy1KFwYSObnf_1zxDJr5gBWAuF2Drw%40mail.gmail.com.