Hi,
I have experienced the same issue:
Caused by: sun.security.validator.ValidatorException:
PKIX path building failed:
sun.security.provider.certpath.SunCertPathBuilderException: unable
to find valid certification path to requested target
I am running a service on the same host as I am running the client
(linux).
I was using the code found in the GT4 book by Sotomayor & Childers.
My solution was to include the following in the code:
import org.globus.axis.util.Util;
// ...
static {
Util.registerTransport();
}
I don't know why it now works, though. How can I "import the server's
certificate on the client" as suggested below ?
Regards
Igor
____________
Francois Hornoy wrote:
> On 6/22/07, Andreas V. Meier <[EMAIL PROTECTED]> wrote:
> On Thu, Jun 21, 2007 at 07:24:48PM +0200, Hornoy Francois wrote:
> > I deployed the MathService example from the Gt4Book (and the
website).
> >
> > I started the contained without the -nosec option. I can see the
line:
> > [47]: https://193.48.145.106:8443/wsrf/services/examples/core/first/
> MathService
> >
> > For the client, i launch:
> > java -classpath
> > ./build/stubs/classes/:/home/fhornoy/Desktop/globus_location/lib/
> *:$CLASSPATH
> > org.globus.examples.clients.MathService_instance.Client
> >
https://193.48.145.106:8443/wsrf/services/examples/core/first/MathServic
e
> >
> > And i get the error:
> > unable to find valid certification path to requested target
>
> The second thing could be that your java needs to import and trust the
> server's certificate. You can use the "keytool" provided by java for
> this.
>
> I took a look at keytool. Actually i don't really know what to do :-)
>
> What do you think the problem is?
>
> I read while my googling session that the problem could be that the
> CA is not a well-known CA... indeed i use simpleCA. So should i
> import the CA files with keytool -import ? And should i do this on
> the server? The client? Both ?
I think you should import the server's certificate on the client.
They reside as .pem in /etc/grid-security/
Ciao
------------------------------------------------------------------
This e-mail and the documents attached are confidential and intended solely
for the addressee; it may also be privileged. If you receive this e-mail
in error, please notify the sender immediately and destroy it.
As its integrity cannot be secured on the Internet, the Atos Origin group
liability cannot be triggered for the message content. Although the
sender endeavours to maintain a computer virus-free network, the sender does
not warrant that this transmission is virus-free and will not be liable for
any damages resulting from any virus transmitted.
Este mensaje y los ficheros adjuntos pueden contener informacion
confidencial destinada solamente a la(s) persona(s) mencionadas
anteriormente. Pueden estar protegidos por secreto profesional Si usted
recibe este correo electronico por error, gracias de informar inmediatamente
al remitente y destruir el mensaje.
Al no estar asegurada la integridad de este mensaje sobre la red, Atos
Origin no se hace responsable por su contenido. Su contenido no constituye
ningun compromiso para el grupo Atos Origin, salvo ratificacion escrita por
ambas partes.
Aunque se esfuerza al maximo por mantener su red libre de virus, el emisor
no puede garantizar nada al respecto y no sera responsable de cualesquiera
danos que puedan resultar de una transmision de virus
------------------------------------------------------------------
