CAN NOT LOAD ROOT CA IN MOBILE MANAGER: javax.net.ssl.SSLException: Failed set trust point in ssl context (Doc ID 987047.1)

Last updated on SEPTEMBER 21, 2016

Applies to:

Oracle Lite - Version 10.3.0.2.0 and later
Information in this document applies to any platform.
***Checked for relevance on 23-Sep-2013***


Symptoms

Using Oracle Lite 10.3.0.2.0 Mobile Server in Standalone mode and SSL, when loading the Root CA it fails with the error:

log9: java.io.IOException: javax.net.ssl.SSLException: Failed set trust point in ssl context
log9: at oracle.security.ssl.OracleSSLSocketImpl.startHandshake(Unknown Source)
log9: at oracle.lite.web.WTGInfo.isValidSSLCert(Unknown Source)
log9: at oracle.lite.web.admin.console.SSLCertEvent.doGeneral(Unknown Source)
log9: at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
log9: at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
log9: at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
log9: at java.lang.reflect.Method.invoke(Method.java:585)
log9: at oracle.cabo.servlet.event.MethodEventHandler.handleEvent(Unknown Source)
log9: at oracle.cabo.servlet.event.TableEventHandler.handleEvent(Unknown Source)
log9: at oracle.cabo.servlet.event.TableEventHandler.handleEvent(Unknown Source)
log9: at oracle.cabo.servlet.event.BasePageFlowEngine.handleRequest(Unknown Source)
log9: at oracle.cabo.servlet.AbstractPageBroker.handleRequest(Unknown Source)
log9: at oracle.cabo.servlet.ui.BaseUIPageBroker.handleRequest(Unknown Source)
log9: at oracle.cabo.servlet.PageBrokerHandler.handleRequest(Unknown Source)
log9: at oracle.cabo.servlet.UIXServlet.doGet(Unknown Source)
log9: at oracle.cabo.servlet.UIXServlet.doPost(Unknown Source)
log9: at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
log9: at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
log9: at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:64)
log9: at oracle.lite.web.CheckSessionFilter.doFilter(Unknown Source)
log9: at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:629)
log9: at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:376)
log9: at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:870)
log9: at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:451)
log9: at com.evermind.server.http.HttpRequestHandler.serveOneRequest(HttpRequestHandler.java:218)
log9: at com.evermind.server.http.HttpRequestHandler.run(HttpRequestHandler.java:119)
log9: at com.evermind.server.http.HttpRequestHandler.run(HttpRequestHandler.java:112)
log9: at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
log9: at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
log9: at java.lang.Thread.run(Thread.java:595)

1) create a keystore using Verisign
2) configure the OC4J to run in SSL mode with the mobile server
3) Start the mobile server -> Administration-> upload CA certificate

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms