SSL certificate issue

SSL certificate issue

  
Hello,

We need to consume an https service on OutSystems application. Unfortunately whenever we make http get call we  see the following exception: "java.security.cert.CertificateException: No subject alternative names present"

As we don't have much control over the service to be consumed, I've tried to import the certificate into the the JDK keystore as described here: http://www.outsystems.com/forums/discussion/10794/web-services-unable-to-find-valid-certification-path-to-requested-target/
But it didn't halp at all.

The certificate is self signed - or even copied from somewhere as it's contents are very suspicious ;)

Anyway, I'm neither SSL nor certificate guru, so I'm not sure, if there is anything else we can do on our side or something needs to be done on the server we are trying to connect to. I've attached file with certificate details if there would be any use of it.

Ignas
Hello Ignas,

The certificate is just a self signed certificate. However, it's going to be difficult to get this certificate automatically accepted due to its subject.

subject=/C=US/ST=California/L=Redwood Shores/O=Oracle DEMO/OU=DO NOT USE COMMERCIALLY/CN=GET A REAL CERTIFICATE!!!/emailAddress=FOR TEST PURPOSES ONLY

Since the subject is very unlikely to match the address you access it with, the certificate should always fail to be verified, even if you add it as a valid issuer (which is what the instructions in the post you mention do).

I suggest you talk with the provider of the web service and ask him to generate a more decent certificate for the web service :)

The subject should be equal to the address you're accessing the web service from.