Oracle JRE cacerts Truststore Does Not Include Intermediate entrust-L1k Certificate (Doc ID 2491289.1)

Last updated on JANUARY 20, 2023

Applies to:

Java SE JDK and JRE - Version 7 and later
Information in this document applies to any platform.

Symptoms

Java fails to validate intermediate entrust-L1k certificate, unless it is explicitly imported into [JAVA_HOME]/lib/security/cacerts .

Upon analyzing the Oracle JRE cacerts truststore ([JAVA_HOME]/lib/security/cacerts), you find the Intermediate entrust-L1k certificate is not included by default.

This is verified with the following steps (as an example):

Notice the Intermediate entrust-L1k certificate is not there.

Changes

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Oracle JRE cacerts Truststore Does Not Include Intermediate entrust-L1k Certificate (Doc ID 2491289.1)

Applies to:

Symptoms

Changes

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!