Problem Securing Execution Server
search cancel

Problem Securing Execution Server


Article ID: 111831


Updated On:


CA Release Automation - Release Operations Center (Nolio) CA Release Automation - DataManagement Server (Nolio)


I am unable to make the communication between Management server and execution server secure. 
While in ASAP the following error is given after changing the port to 8443 and protocol to https: 
Could not access HTTP invoker remote service at [HTTPS://executionServerName:8443/execution/UpdateCommunicationService]; nested exception is PKIX path building failed: unable to find valid certification path to requested target


CA Release Automation Server


An attempt was made to update the conf/keyStore.jks with a custom certificate. This causes problems while initializing the startup of the Execution Server. An error like the following can be found in the logs/nolio_exec_all.log:

<date> <time> <thread> ERROR <class> - Context initialization failed
org.springframework.beans.factory.BeanCreationException: Error creating bean with name ' .... .... .... 
 ... ...
 ... ... Invocation of init method failed; nested exception is java.lang.RuntimeException: Cannot recover key


By default, the conf/keyStore.jks keystore file has a single key that has an alias that is the same as the hostname where the keystore file is located. Remove the custom certificate that had been attempted to be added using the command: <RAExecutionServerInstallDir>/jre/bin/keytool -delete -alias <alias of your custom key> -keystore conf/keyStore.jks


Additional Information

Product Documentation: Secure Management Server to Execution Server Communication
KB Article: Configuring SSL for RA repository server
KB Article: Secure Communications With Signed Certificates