WSO2 Dashboard SAML auth: PKIX path building failed

434 views Asked by At

Using the wso2 identity server in my on production site I try to access to "dashboard jaggery apps" for manage own user account (change password, etc). But when I try to login in there (using SAML2 in the https production domain) shows the following error,

PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

We write the keystore path in the auth_config.json inside repository/deployment/server/jaggeryapps/dashboard/authentication, but it does not work. We have other application using the same fingerprint and/or x.509 hash correctly (with SAML2), but this app we can't configure.

here the complete error http://pastebin.com/tgJenydM

Any suggestions? Thanks.


update:

When I use the backend IP the error is not raised, but when I change to the domain name yes. (This error really make me crazy)

1

There are 1 answers

2
Asela On

Did you change the default keystore of WSO2IS server ? If, Could you pleas let us know whether you import your new certificate in to the trust store file (client-truststore.jks) of WSO2IS server. If it is not, This can be the issue. Please export the certificate from Keystore and import it in to the trust store of the server. You can use jave keytool command to do it.

When you are working on dashboard (not in localhost), there are some few configuration you need to do . You can find them from here