Perhaps cacerts is not really where you point to? It should be at $JAVA_HOME/lib/security/cacerts , where $JAVA_HOME can be obtained from /usr/libexec/java_home -v 1.6. In my case it is /Library/Java/JavaVirtualMachines/1.6.0_37-b06-434.jdk/Contents/Home
--E On Feb 21, 2013, at 5:16 PM, Gordon Ross <[email protected]> wrote: > I'm trying to access a HTTPS web server, which has a SSL certificate signed > by our own CA. I imported the CA public key into my main carets file using: > > keytool -keystore <PATH_TO_CACERTS>/cacerts -import -trustcacerts -alias > "MY_CA" -file ./root.cer > > (I'm using a Mac, so the cacerts file is > /System/Library/Java/Support/CoreDeploy.bundle/Contents/Home/lib/security/cacerts > ) > > But when I make a simple HTTP GET, I'm still getting: > > "javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated" > > Google only seems to give me solutions which involve disabling certificate > checking - which isn't what I want. > > Can someone tell me what I'm doing wrong ? > > Thanks, > > GTG > -- > Gordon Ross > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] >
