Adam Bien's Weblog
How To Fix Expired Certificate In Embedded Glassfish
The following error:
com.sun.enterprise.security.ssl.impl.SecuritySupportImpl checkCertificateDates SEVERE: SEC5054: Certificate has expired: [ [ Version: V3 Subject: CN=GTE CyberTrust Root 5, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US Signature Algorithm: SHA1withRSA, OID = 1.2.840.1135184.108.40.206 Key: Sun RSA public key, 2048 bits
Is caused by certificate expiration in the keystore file:
cacerts.jks. The cacerts.jks file usually resides in the folder:
[GLASSFISH_HOME]/glassfish4/glassfish/domains/[DOMAIN_NAME]/config. With embedded GlassFish the certificate is extracted into the
Copy the keystore file cacerts.jks into
mvm clean install you project.
In case the keystore file also contains the expired certificate, simply delete the affected certificate:
keytool -delete -keystore ./cacerts.jks -alias gtecybertrust5ca
See you at Java EE Workshops at MUC Airport!
Special Events: Java 8 with Java EE 7: "More Power with Less Code", 13th October, 2014 and Java EE 7: "Testing and Code Quality", 14th October, 2014 Tweet Follow @AdamBien