Connecting to a URL that requires a certificate results in " unable to find valid certification path to requested target" error


Article ID: 84347


Updated On:


CA Automic Workload Automation - Automation Engine


Error Message : unable to find valid certification path to requested target

A user attempts to create a new adapter for any RA solution (e.g. Webservices, VmWare, etc.) that requires a certificate.  However, an error occurs.


Cause type:
Root Cause: There is no certificate for the website being connected to.


OS Version: N/A


Go to the https webpage and copy the certificate in Internet Explorer.
  1. Go to the https webpage
  2. Right-click on a blank field on the webpage and choose "Properties"
  3. Click on button "Certificates"
  4. Change to tab "Details"
  5. Click on button "Copy to file"
  6. A Window "Welcome to the Certificate Export Wizard" appears
  7. Click on button "Next"
  8. Choose Format "DER encoded binary X.509 (.CER)"
  9. Click on button "Next"
  10. Choose Filename and Download location
  11. Click on button "Next"
  12. Click on button "Finish"
  13. Find out which java version is being used (i.e. open a command prompt and execute the command: java -jar)
  14. Search for a file named "cacerts" in the java directory that runs the RA agent (i.e. C:\Program Files\Java\jdk1.6.0_16\jre\lib\security)
  15. Run the following command on the command line to import the certificate:
keytool -importcert -file c:\Companyj.cer -keystore cacerts 
16. Create a password (use 'changeitas keystore default password)
       17. Trust this certificate?: yes
       18. Certificate was added to keystore
The import is done and the RA agent can connect to the URL specified in the RA agent.

It is necessary to have all certificates installed for all Webservice/VM environments connecting to.
keytool - Key and Certificate Management Tool


Fix Status: No Fix

Fix Version(s):

Additional Information

Workaround :