<div>
which certificate is it referring to? &nbsp;Sounds like its the self signed one in which case the message is valid.<br />
<br />

</div>


<div>
The message is referring to the server certificate, which is signed by a proper CA. The browser accepts it, but not JRE. The problem is that this applet tries to open a connection back to the server with HTTPClient 3.1 but fails with the error message &quot;unable to find valid certification path to request target&quot;. I would guess that if the java JRE recognized the server certificate as valid the HTTPClient could also connect without a problem.<br />
<br />
The applet itself is self signed.<br />
<br />
I'm using JDK 1.6, tomcat 5.5
</div>


<div>
Maybe it helps if I post a code snippet? Basically all I do is a POST over https. The error message I get is &quot;unable to find valid certification path to requested target&quot;, I guess because the server certificate is not trusted by JRE. The same code works if run on http.<br />
<br />
I am using commons-httpclient-3.1<br />
<br />
It might be similar to this: <a href="https://www.experts-exchange.com/questions/23610405/java-ssl-unable-to-find-valid-certification-path-to-requested-target.html" rel="ugc">https://www.experts-exchange.com/questions/23610405/java-ssl-unable-to-find-valid-certification-path-to-requested-target.html</a><br />
<br />
I have tried importing the server certificate into my default keystore, but it didn't help.<br />

<pre><code class="code-1 nolinks" id="code-269736"><span>String targetURL = codeBase + &quot;upload.jsp&quot;;</span>
<span>PostMethod filePost = new PostMethod(targetURL);</span>
<span>ByteArrayPartSource byteArrayPartSource = new ByteArrayPartSource(filename, baos.toByteArray());</span>
<span>filePost.getParams().setCookiePolicy(CookiePolicy.IGNORE_COOKIES);</span>
<span>filePost.setRequestHeader(&quot;Cookie&quot;, &quot;JSESSIONID=&quot; + sessionId);</span>
<span>filePost.setRequestEntity(new MultipartRequestEntity(parts, filePost.getParams()));</span>
<span>HttpClient client = new HttpClient();</span>
<span>int methodStatus = client.executeMethod(filePost);</span>
</code></pre>
</div>


<div>
where did you get the key you added to the keystore?<br />
<br />

</div>


<div>
.keystore in my documents &amp;&nbsp;settings, basically the default location. I imported the certificate as a trustedCertEntry.<br />
<br />
I can get it as a .crt file from the browser, but I also have it as .pem
</div>


<div>
does the certificate show up in java control panel?<br />
Is it a 'proper' certificate (as opposed to a test certificate)<br />
<br />

</div>


<div>
It is a proper certificate signed by Cybertrust. As stated Firefox and IE accept it without any problems. Only the applet states that the certificate has not been issued by a trustworthy source.<br />
<br />
I have imported the certificate (and the cybertrust certificate + its root certificate) into my default keystore. I have also added them in the java control panel (all 3).<br />
<br />
But the applet will still not recognize them. I am really desperate here, since I have the feeling that this shouldn't be this hard.
</div>


<div>
I finally found the solution: <a href="http://blogs.sun.com/andreas/entry/no_more_unable_to_find" rel="ugc">http://blogs.sun.com/andreas/entry/no_more_unable_to_find</a><br />
<br />
I've added the certificate to a keystore called jssecacerts in jre/lib/security and everything works as expected now.
</div>


<div>
Did you not run the code I posted earlier? &nbsp;It puts the cert in jssecacerts for you :)<br />
<br />

</div>


<div>
Yes now I see that what you've posted is the same that I used in the end. The problem was that I didn't know where to put that jssecacerts in the end.
</div>


<div>
<div class="content wysiwyg-content">
I have a web application, which is reachable through https. The server has a proper SSL certificate and IE and Firefox trust it automatically.<br />
<br />
A java applet is also part of this web application. It is a self signed applet, so the user has to go through a &quot;run&quot; dialogue.<br />
<br />
The problem is that when the applet is loading I get an additional &quot;the certificate of the server cannot be verified&quot; message. Now this is the same certificate that has automatically been trusted by the browser.<br />
<br />
In the java control panel the option &quot;use certificates of browser keystore&quot; is set. I've also tried to import the server certificate in the &quot;security&quot; tab of the java control panel, but without success.<br />
<br />
How can I get my JRE to trust the server certificate?
</div>
</div>


I have a web application, which is reachable through https. The server has a proper SSL certificate and IE and Firefox trust it automatically.

A java applet is also part of this web application. It is a self signed applet, so the user has to go through a "run" dialogue.

The problem is that when the applet is loading I get an additional "the certificate of the server cannot be verified" message. Now this is the same certificate that has automatically been trusted by the browser.

In the java control panel the option "use certificates of browser keystore" is set. I've also tried to import the server certificate in the "security" tab of the java control panel, but without success.

How can I get my JRE to trust the server certificate?

SSL Certificate and Java Applet - how to combine them properly?

Web applications are systems that run in browsers that perform functions normally associated with other client-based programs. One of the most commonly used web applications is email; instead of downloading individual emails to a local machine, the data is shown through a website. Other examples of web applications are collaborative systems like a wiki or an online game.