Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

wso2carbon.jks and client-truststore.jks expired on Jan 7 2025. #22205

Open
zeonixtech opened this issue Jan 8, 2025 · 1 comment
Open

wso2carbon.jks and client-truststore.jks expired on Jan 7 2025. #22205

zeonixtech opened this issue Jan 8, 2025 · 1 comment
Labels
Type/Bug

Comments

@zeonixtech
Copy link

Description

WARN {org.apache.tomcat.util.net.SSLUtilBase} - The trusted certificate with alias [wso2carbon] and DN [CN=localhost, OU=WSO2, O=WSO2, L=Santa Clara, ST=CA, C=US] is not valid due to [NotAfter: Tue Jan 07 15:29:37 IST 2025]. Certificates signed by this trusted certificate WILL be accepted

Steps to Reproduce

  1. Running Application start giving error "Error during SSL Handshake with remote server"
  2. Upon investigation we found that wso2carbon.jks and client-truststore.jks expired on Jan 7 2025.
  3. Tried to regenerate the certificates from this Post https://ei.docs.wso2.com/en/7.0.0/micro-integrator/setup/security/creating_keystores/
  4. Still nogo.. please advise or upload new keystores !

Version

wso2is-7.0.0

Environment Details (with versions)

No response
@zeonixtech
Copy link
Author

PS: In Apache2 I have used the following config to bypass the SSL check in order to patch this issue :

  • SSLProxyEngine on
  • SSLProxyVerify none
  • SSLProxyCheckPeerCN off
  • SSLProxyCheckPeerName off
  • SSLProxyCheckPeerExpire off

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Type/Bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@zeonixtech