Hi Júnior, In AWS cluster mode, HazelCast required a public certificate to build an SSL connection with AWS API. The certificate changes from AWS region to region and time to time. Hence you need to figure out which certificate actually required to import based on your AWS region. Adding verisign g5 root certificate resolved this issue for me once, check [1]
By starting the wso2 server with SSL debug logs, you can find out the exact details of SSL handshake. *sh wso2server.sh -Djavax.net.debug=ssl:handshake* [1] https://wso2.org/jira/browse/CARBON-15421 On Sun, Jul 9, 2017 at 8:22 AM, Sashika Wijesinghe <[email protected]> wrote: > Hi Júnior, > > You need to add the certificate authorities public key cert (CA pub cert) > or if it is a self-signed certificate you need to add the public key cert > to client-truststore.jks. > > On Wed, Jun 28, 2017 at 7:35 PM, Júnior <[email protected]> wrote: > >> Hi, >> >> I am trying to setup a WSO2 Cluster using aws mode but I am receiving >> this error: >> >> javax.net.ssl.SSLHandshakeException: >> sun.security.validator.ValidatorException: >> PKIX path building failed: >> sun.security.provider.certpath.SunCertPathBuilderException: >> unable to find valid certification path to requested target { >> com.hazelcast.cluster.impl.TcpIpJoinerOverAWS} >> com.hazelcast.core.HazelcastException: javax.net.ssl.SSLHandshakeException: >> sun.security.validator.ValidatorException: PKIX path building failed: >> sun.security.provider.certpath.SunCertPathBuilderException: unable to >> find valid certification path to requested target >> at com.hazelcast.util.ExceptionUtil.rethrow(ExceptionUtil.java: >> 67) >> >> Do you know which certificate I need to add to the truststore? >> >> Thanks, >> >> -- >> Francisco Ribeiro >> *SCEA|SCJP|SCWCD|IBM Certified SOA Associate* >> >> _______________________________________________ >> Dev mailing list >> [email protected] >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> >> > > > -- > > *Sashika WijesingheSoftware Engineer - QA Team* > Mobile : +94 (0) 774537487 > [email protected] > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > > -- Asanka Vithanage Associate Technical Lead -QA Mobile: +94 0716286708 Email: [email protected] WSO2 Inc. www.wso2.com
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
