After going through the steps given here:
We are getting an error that prevents the loading of ASAP after successfully launching the https://<server>:8443 and clicking the link for Automation Studio and launching the jnlp. First it prompts saying that it is not trusted. Then it fails with:
Application Blocked for Security
Failed to validate certificate.
The application will not be executed.
Publisher: Nolio, Ltd.
And we are prompted with two buttons:
OK or More Information...
When clicking more information button it gives these details:
sun.security.validator.ValidatorException: Extended key usage does not permit use for code signing
Release Automation Server 5.5.2
Using the commands in the "Additional Information" section below showed that the certificate/keystore used to sign the jar file (during the jarsigner step) had KeyUsage = critical and ExtendedKeyUsage = serverAuth. This combination is not allowed to sign code.
To fix this problem either:
Once you have either of these you can import the certificate into a java keystore to use with jarsigner. The fact that (b) uses a completely different keystore then is otherwise used for the rest of securing the UI is okay. You don't need to reference this codesigning keystore anywhere.
You should be able to use one of these two commands to confirm if this situation described above applies to your problem.