Datadriven service fails in SSL enabled environment

Article Id: 106133

Status: Published

Updated On: 12-07-2018 03:08

Products:

CA Application Test Service Virtualization CA Continuous Application Insight (PathFinder)

Issue/Introduction:

A known-good virtual service was converted to data-driven. When used we receive the message

javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

in both the vse log and inspection view

Cause:

When executing a data-driven virtual service, the VSE will contact the registry's API to obtain data.

This API is accessed over SSL, and the VSE does not trust the certificate presented.

Environment:

Any supported DevTest version
SSL enabled for registry web connections (API on port 1505 by default)

Resolution:

The trust store used for this connection is the cacerts located in DEVTEST_HOME/jre/lib/security.

In order to trust this connection, the relevant root and intermediate certificates should be added to this file.

Should a self-signed certificate be used, this should be added in lieu of the above.