A pop up box with message: "Accept Certificate - Unknown certificate; proceed?" is displayed when opening Open Workbench (OWB) in an Secure Sockets Layer (SSL) environment. We would like this process to be seamless and not display this window. Although the option to save is displayed, this doesn't seem to be saving the certificate for future use as the next time we open OWB, the same message is displayed.
The SSL certificate has not been installed on the local machine, and that it is not provided by a "commonly trusted root CA" (for example, a self-generated or internal company certificate, that Sun Java didn't install by default).
When you install Java (or IE, or any application that handles SSL) it installs a number of "root authority certificates" from companies like Verisign.
Any certificates for SSL servers that have these "trusted CA certificate" providers as a root will be accepted immediately. So if the SSL certificate on the system does not come from a 'normal' trusted root, the client machine you are running OWB from says "don't know who this.. can't trust it" and rejects it.
Component: OPEN WORKBENCH (OWB)
Install the certificate, then java will then recognize it. When you install an SSL certificate in Microsoft Internet Explorer (IE), you get a dialog box for doing this. However with java you must use the command line.
This procedure should work for "self signed" certificates. Please note you have to install this on every client machine and also note the security issues if user try to access application from outside.
On Premise customers, to check port and URL information:
See also: OWB/MSP certificate prompt