javax.net.ssl.SSLKeyException: [Security:090477]Certificate chain received from was not trusted causing SSL handshake failure
<Jan 28, 2008 12:21:14 PM CST> <Error> <HTTP> <BEA-101017> <[weblogic.servlet.internal.WebAppServletContext@eccbb35a - name: '/', context-path: ''] Root cause of ServletException.
javax.net.ssl.SSLKeyException: [Security:090477]Certificate chain received from snuper.northwestern.edu - 220.127.116.11 was not trusted causing SSL handshake failure.
at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireException(Lcom.certicom.tls.interfaceimpl.AlertEvent;)V(Unknown Source)
at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireAlertSent(Lcom.certicom.tls.record.alert.Alert;)Lcom.certicom.tls.interfaceimpl.AlertEvent;(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Lcom.certicom.tls.record.alert.Alert;)V(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(II)V(Unknown Source)
at com.certicom.tls.record.handshake.ClientStateReceivedServerHello.handle(Lcom.certicom.tls.record.handshake.HandshakeMessage;)V(Unknown Source)
Truncated. see log file for complete stacktrace
Let me give u a overview of our problem.
Actually we renewed our SSL certificate from VeriSign for this year 2008 ok.
We have enabled SSL in our Apache webserver.
With our new certificate our Webserver is able to talk to Appserver (i.e weblogic) using SSL meaning we are able to see all the dynamic content from webpages.
But when we click on PDF (which is used a report in our application) its throwing the above error.
We actually use Bigfaceless 3rd party tool for the PDF generation.
To add to the confusion VeriSign has changed their Common Name (Issued By: CN) which makes me to think is causing this error but not very sure how to solve this.