Article - CS323573
Certificate error "java.security.cert.CertificateExpiredException" reported in MethodServer.log
Modified: 14-Apr-2020
Applies To
- Windchill PDMLink 10.1
Description
Error below reported in MethodServer.log :
Running command line :
ERROR [ajp-bio-8011-exec-1] com.infoengine.log.debug Administrator - javax.naming.CommunicationException: simple bind failed: <ACTIVE_DIRECTORY_FQDN>:<PORT>[Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: timestamp check failed]
javax.naming.CommunicationException: simple bind failed: <ACTIVE_DIRECTORY_FQDN>:<PORT> [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path
...
ERROR [ajp-bio-8010-exec-2] org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/Windchill].[jsp] <username> - Servlet.service() for servlet jsp threw exception
java.security.cert.CertificateExpiredException: NotAfter: Sat Jan 21 10:40:44 GMT 2018
at sun.security.x509.CertificateValidity.valid(CertificateValidity.java:256)
javax.naming.CommunicationException: simple bind failed: <ACTIVE_DIRECTORY_FQDN>:<PORT> [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path
...
ERROR [ajp-bio-8010-exec-2] org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/Windchill].[jsp] <username> - Servlet.service() for servlet jsp threw exception
java.security.cert.CertificateExpiredException: NotAfter: Sat Jan 21 10:40:44 GMT 2018
at sun.security.x509.CertificateValidity.valid(CertificateValidity.java:256)
Running command line :
openssl s_client -connect <ACTIVE_DIRECTORY_FQDN>:<PORT>
returns info as below :
Verify return code: 10 (certificate has expired)
This is a printer-friendly version of Article 323573 and may be out of date. For the latest version click CS323573