Root Certs in Java | SSL Certificate

boywaja

Newbie

Offline

Posts: 2

Root Certs in Java

« on: May 10, 2012, 11:06:21 AM »

We're getting a certificate error on our training site from within java. (screenshots attached)

The site ssl cert is issued by
CN=COMODO High Assurance Secure Server CA,
[From: Thu Nov 30 19:00:00 EST 2006,
To: Tue Dec 31 18:59:59 EST 2019]
[10687521818019188689634919319454876482]

which is issued by
CN=COMODO Certification Authority,
[From: Thu Nov 30 19:00:00 EST 2006,
To: Mon Dec 31 18:59:59 EST 2029]\
[104350513648249232941998508985834464573]

It looks like these aren't in the Java. Is there a reason these aren't in the trusted keystore? Any plans for java to include this in the near future. (I"m using java 1.6 update 31). Am I going to have to deploy this manually to all systems?

comodo.png (15.48 KB, 517x295 - viewed 28 times.) comodo2.png (17.19 KB, 395x190 - viewed 19 times.) comodo3.png (34.37 KB, 678x433 - viewed 18 times.)
	Logged

Sal Amander

Comodo Staff
Comodo's Hero

Offline

Posts: 610

Re: Root Certs in Java

« Reply #1 on: May 10, 2012, 11:45:26 AM »

You need to be sure your certificate's full hierarchy (up to AddTrust) is installed on the server/site that Java is trying to access.

Easiest thing to do is submit a support ticket via https://support.comodo.com and ask for a cert re-issue off our 'new' hierarchy. It seems you're using one of our slightly older ones that Microsoft-based systems have trouble with hosting because there are 3 Root CAs (cross-signed for ubiquity) in the older hierarchy.