Adam Bien's Weblog
How To Fix Expired Certificate In Embedded Glassfish
The following error:
com.sun.enterprise.security.ssl.impl.SecuritySupportImpl checkCertificateDates SEVERE: SEC5054: Certificate has expired: [ [ Version: V3 Subject: CN=GTE CyberTrust Root 5, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US Signature Algorithm: SHA1withRSA, OID = 1.2.840.113522.214.171.124 Key: Sun RSA public key, 2048 bits
Is caused by certificate expiration in the keystore file:
cacerts.jks. The cacerts.jks file usually resides in the folder:
[GLASSFISH_HOME]/glassfish4/glassfish/domains/[DOMAIN_NAME]/config. With embedded GlassFish the certificate is extracted into the
Copy the keystore file cacerts.jks into
mvm clean install you project.
In case the keystore file also contains the expired certificate, simply delete the affected certificate:
keytool -delete -keystore ./cacerts.jks -alias gtecybertrust5ca
See you at Java EE Workshops at MUC Airport!
NEW workshop: Java EE 7 Testing, Deployment, Automation and Code Quality: January 28th, 2015, Airport Munich