Webfort Sample application with SSL can't find CA certificate


Article ID: 196398


Updated On:


CA Advanced Authentication - Strong Authentication (AuthMinder / WebFort) CA Strong Authentication CA Rapid App Security CA Risk Authentication CA Advanced Authentication


I am getting the following error and I have checked ARCOT_HOME environment variable which does exist. The only difference is this is 9.1 SP1 version. 

2020-07-24 12:17:03,952 [WebContainer : 2] INFO  AuthAPICommunication,(WebContainer : 2:39) - Attempting to initialize Authentication SDK.
2020-07-24 12:17:03,956 [WebContainer : 2] WARN  PooledTCPTransport,(WebContainer : 2:34) - Initialization failed
com.arcot.webfort.common.pool.exception.ConfigurationException: Server CA certificate is not found
        at com.arcot.webfort.common.pool.socket.SSLConfigUtil.getSSLSocketFactory(SSLConfigUtil.java:41) ~[arcot-webfort-common.jar:8.2]

Any idea how to verify?

This is for websphere 9.05.2 version.  


Release : 9.1

Component : RiskMinder(Arcot RiskFort)


This issue happens if the ARCOT_HOME environment variable is not set, make sure that the ARCOT_HOME is set on the machine where Sample app is deployed. The certificates are placed one level up in ARCOT_HOME directory and has the following format-

-rw-r-----.  1 arcotuser arcotuser       2410 Jul 24 14:03 AdvAuth\server.p12
-rw-r-----.  1 arcotuser arcotuser       1017 Jul 24 14:03 AdvAuth\cacert.pem

It is also important to check if the User starting the Application server has access to write in directory one level up to the ARCOT_HOME.

Note -> Currently Sample app only 2-way SSL and not 1-way ssl.