> 3) Tomcat's server.xml pointed to the correct keystore file This is a common point of confusion. The keystore specified in server.xml has nothing whatever to do with connections made by Java classes like UrlConnection. The latter use the _system_ keystore in $JAVA_HOME/jre/lib/security/cacerts. The system keystore you can be customized using the javax.net.ssl.keyStore and related system properties when starting the JVM hosting an application.
> So my question is, is the JDK update responsible for this error ? Probably. The JDK update likely deleted the cacerts file you had been using that contained the trusted cert entries needed by CAS. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
