Accessing Paglet Producer via SSL with Servers that have Self-Signed Certificates Fails with Exception " peer not authenticated"

(Doc ID 1530386.1)

Last updated on NOVEMBER 19, 2016

Applies to:

Oracle WebCenter Portal - Version and later
Information in this document applies to any platform.


Configuring Pagelet Producer to be able to proxy HTTPS resources which use self-signed or certificates issued by untrusted authorities.

The content server and the pagelet producer server both use self-signed SSL certificates.  The pagelet producer server has the content server's SSL certificate imported into its keystore/truststore. 

The exception in the pagelet producer log is this: peer not authenticated
    at weblogic.servlet.internal.VirtualConnection.initSSLAttributes(
    at weblogic.servlet.internal.VirtualConnection.init(
    at weblogic.servlet.internal.ServletRequestImpl.initFromRequestParser(
    at weblogic.servlet.internal.MuxableSocketHTTP.dispatch(
    at weblogic.socket.JSSEFilterImpl.dispatch(
    at weblogic.socket.MuxableSocketDiscriminator.dispatch(
    at weblogic.socket.JSSEFilterImpl.dispatch(
    at weblogic.socket.SocketMuxer.readReadySocketOnce(
    at weblogic.socket.SocketMuxer.readReadySocket(
    at weblogic.socket.PosixSocketMuxer.processSockets(
    at weblogic.socket.SocketReaderRequest.execute(
    at weblogic.kernel.ExecuteThread.execute(
     Caused by: PKIX path building
      failed: unable to
      find valid certification path to requested target




The same works in HTTP. If the source URL is set to the HTTPS address of the content server, then accessing a pagelet via the pagelet producer fails with the error mentioned above.



Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms