Thanks Nedim, I was pointing my Tomcat to the wrong JDK after making the changes.
But I am a little confused over what may have caused this error to occur. Environment : JDK 1.6.0_6 Tomcat : 6.0.18 Until yesterday I had this configuration which worked fine for more than 6 months 1) Used OpenSSL to create a CA for our company 2) Our self signed CA which issued a certificate to the Tomcat server running the CAS-server app. 3) Tomcat's server.xml pointed to the correct keystore file Yesterday, ran an update on JDK (automatic reminder for updates) on test server Boom, everything went haywire this morning on both the test as well as the live server :( It gave me this notorious error. So I deleted all the certificates on the test server. Followed the certificate generation steps on http://www.ja-sig.org/wiki/display/CASUM/Demo and http://www.jasig.org/cas/server-deployment/solving-ssl-issues http://www.nabble.com/SSL-Issue-td10719386.html#a10719386 and now it is working fine on my test server. I have to yet do it on my production server. So my question is, is the JDK update responsible for this error ? Thank you and may be I will document all the changes so that anyone facing a similar issue would be able to find it easily. 2009/7/21 Nedim Ozan Tekin <[email protected]> > > > Please send the content of your server.xml to help you better.. > > > ------------------------------ > > *From:* Kavita Tipnis [mailto:[email protected]] > *Sent:* Tuesday, July 21, 2009 5:50 PM > *To:* [email protected] > *Subject:* Re:[cas-user] Unable to validate ProxyTicketValidator > [[edu.yale.its.tp.cas.client.ProxyTicketValidator proxyList=[null] for the > first time in production environment > > > > Ok , > I generated a new certicicate and followed instructions on the establishing > the SSL handshake given in the following blog > http://blogs.sun.com/andreas/entry/no_more_unable_to_find > and I am still getting the same error. :( > > Thanks, > > > On Tue, Jul 21, 2009 at 8:59 AM, Kavita Tipnis <[email protected]> > wrote: > > Hi Everyone, > > I am getting the infamous Unable to validate ProxyTicketValidator > [[edu.yale.its.tp.cas.client.ProxyTicketValidator proxyList=[null] error for > the very first time. > I went through the wiki entries and nabble posts about this error, but I > had it working since the past 4 months and suddenly this morning it decided > to throw this error. > My cert file is in the %JAVA_HOME%\jre\lib\security\cacerts. > My question is I have not made any changes to the CAS server once it was > all configured and I had no issues until now. > Any insights on this would be helpful. > > Please see CAS-wiki admins - I cannot login on the ja-sig wiki page ! > > > Thank You > > -- > Kavita Tipnis > > > > > -- > Kavita Tipnis > > -- > > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > > Internal Virus Database is out-of-date. > Checked by AVG. > Version: 7.5.557 / Virus Database: 270.12.10/2088 - Release Date: 4/30/2009 > 6:01 AM > > Dikkat: Bu elektronik posta mesaji kisisel ve ozeldir. Eger size > gonderilmediyse lutfen gondericiyi bilgilendirip mesaji siliniz.Firmamiza > gelen ve giden mesajlar virus taramasindan gecirilmektedir. Mesajdaki > gorusler gondericiye ait olup HAVELSAN A.S. resmi gorusu olmak zorunda > degildir. Attention: This e-mail message is private and privileged.If you > are not the recipient for whom this e-mail message is intended, please > notify the sender immediately and delete this e-mail message from your > system.All sent and received e-mail messages go through a virus scan. Any > opinions presented in this e-mail message are solely those of the author and > do not necessarily represent HAVELSAN A.S.`s formal and authorized views. > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > Internal Virus Database is out-of-date. > Checked by AVG. > Version: 7.5.557 / Virus Database: 270.12.10/2088 - Release Date: 4/30/2009 > 6:01 AM > -- Kavita Tipnis -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
