ssl Security Certificate Issue

less than 1 minute read

Solution for the issue on Local microservice testing Caused by: javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

Certificate issue for Mac and Windows users when opening GKE URLs from UI:

Update Postman Certificate Authority (Mac)

Download the certificate from the web browser

Update CA Certificate

For Macbook double-click, and it will install or open Key Chain Access

Export the certificate from Keychain access and Save it as pem file

If you would like to convert your binary .cer file to an ascii .pem file run this command

openssl x509 -inform der -in "My_Enterprise_Root_CA.cer" -out "My_Enterprise_Root_CA.pem"

Application

Postman Settings

Turn On/Off based on the certificate

Install the certificate in JDK

When developing microservice that needs connection to GKE endpoints, the local machines need have cert imported to java keystore.

path of jdk installation: /Library/Java/JavaVirtualMachines/jdk-11.0.8.jdk/Contents/Home/lib/security/cacerts.

please execute the command with the path added in it:

sudo keytool -import -file /Users/${UserName}/Documents/My_Enterprise_Root_CA.cer \
-keystore /Users/${UserName}/Library/Java/JavaVirtualMachines/corretto-21.0.3/Contents/Home/lib/security/cacerts

if it asks for 2 passwords then

1st password would be your mac/windows login password
2nd password would be “changeit”

ssl Security Certificate Issue

Update Postman Certificate Authority (Mac)

Update CA Certificate

Application

Postman Settings

Install the certificate in JDK

You may also enjoy

Vegetable Stock: Best Preparation Methods

Veggie snacks

Soups from Veggie Stock

Dry Fruit: Meal Plan