We have installed a new certificat on the ARIS server, following ACC documentation
all is ok for https access
but we have an error when starting a .jar client..
message "impossible to connect to server, you try to use a SSL connection, the certificat is not approved or not imported in JRE..."
not found in documentation something regarding certificat and .jar...
thanks for your help
pam
0
5k
5
by Martin Schröder
Posted on Tue, 10/23/2018 - 13:39
Hello Pierre,
the message suggest two possible reasons "...the certificate is not approved or not imported in JRE...".
So either the certificate cannot be validated against the issuer (do you use a self-signed cert. or was it issued by a public Certificate Authority?) or it may not be present in the Java keystore.
The ACC Command Line doc points out: "If your company uses own CA get a certificate from this CA and add this CA to the trust store of all clients."
Both the Download Client Configuration Guide and Basic Trouble Shooting Guide offer more details than the ACC docu.
All download clients (unfortunately not installed clients) will automatically use this cacerts file.
You create this file via importing this into an JRE with the "keytool" and copy this file to the location specified above.
Since 10.0 SR 6:
ARIS Architect/Designer, installed or download, is able to import this file in the used JRE. The user is prompted whether he wants to accept this certificate in order to connect to the server. Cool, isn't it?
BTW: an admin can use this mechanism to let the "cacerts" file be created from ARIS and then use it to copy it on the location on the server, so other users are not prompted at all.
