SSL Certifier is not trusted

Posted by on 7 January,2025 Leave a comment (0) Go to comments

I have seen a problem with getting data using XPages or agents from Amazon hosted services because they now are using a Amazon Trusted Root. But it can be others poping up also in the future.

That then recalled my memory about a post I did several years ago
http://xpagedeveloper.com/2017/getting-data-from-an-https-site-in-backend-using-xpages

Is if you are experiencing problems with services hosted on Amazon with The Amazon C1 root cert or Amazon M02 2024 cert you need to import them.
You can find the root certs here https://www.amazontrust.com/repository/
If you need to add if for agents check out this technote
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0035853

Some error messages that you might see on the console
javax.net.ssl.SSLHandshakeException
java.security.cert.CertificateException
startHandshake
com.ibm.domino.napi.ssl.DominoX509TrustManager
checkServerTrusted
DominoX509TrustManager

Check out Certinfo a small tool that I’ve created to help with getting enddates from certificates




Posts

Leave a Comment


NOTE - You can use these HTML tags and attributes:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

This site uses Akismet to reduce spam. Learn how your comment data is processed.