search cancel

Connecting to a URL that requires a certificate results in " unable to find valid certification path to requested target" error


Article ID: 84347


Updated On:


CA Automic One Automation


Error Message : unable to find valid certification path to requested target

A user attempts to create a new adapter for any RA solution (e.g. Webservices, VmWare, etc.) that requires a certificate.  However, an error occurs.


Cause type: Configuration
Root Cause: There is no certificate for the website being connected to.


OS Version: N/A

Release: 4.5

Component: RA Web Service REST


Go to the https webpage and copy the certificate in Internet Explorer.

  • Go to the https webpage
  • Right-click on a blank field on the webpage and choose "Properties"
  • Click on button "Certificates"
  • Change to tab "Details"
  • Click on button "Copy to file"
  • A Window "Welcome to the Certificate Export Wizard" appears
  • Click on button "Next"
  • Choose Format "DER encoded binary X.509 (.CER)"
  • Click on button "Next"
  • Choose Filename and Download location
  • Click on button "Next"
  • Click on button "Finish"
  • Find out which java version is being used (i.e. open a command prompt and execute the command: java -jar)
  • Search for a file named "cacerts" in the java directory that runs the RA agent (i.e. C:\Program Files\Java\jdk1.6.0_16\jre\lib\security)
  • Run the following command on the command line to import the certificate:
keytool -importcert -file c:\Companyj.cer -keystore cacerts 
  •  Create a password (use 'changeitas keystore default password)
  •  Trust this certificate?: yes
  •  Certificate was added to keystore
    The import is done and the RA agent can connect to the URL specified in the RA agent.

    It is necessary to have all certificates installed for all Webservice/VM environments connecting to.
    keytool - Key and Certificate Management Tool