use*_*603 6 eclipse toolkit amazon-web-services
我在一家公司,需要设置代理才能上网。代理设置没问题,因为我可以连接到其他网站,例如 Neon - http://download.eclipse.org/releases/neon,但不能连接到http://aws.amazon.com/eclipse。
错误信息是:
无法在https://aws.amazon.com/eclipse/content.xml读取存储库 。无法在https://aws.amazon.com/eclipse/content.xml读取存储库。sun.security.validator.ValidatorException:PKIX 路径构建失败:sun.security.provider.certpath.SunCertPathBuilderException:无法找到请求目标的有效认证路径。
具体堆栈为:
javax.net.ssl.SSLHandshakeException:sun.security.validator.ValidatorException:PKIX 路径构建失败:sun.security.provider.certpath.SunCertPathBuilderException:无法在 sun.security.ssl.Alerts.getSSLException 处找到请求目标的有效认证路径(未知来源)位于 sun.security.ssl.SSLSocketImpl.fatal(未知来源)位于 sun.security.ssl.Handshaker.fatalSE(未知来源)位于 sun.security.ssl.Handshaker.fatalSE(未知来源)位于 sun.security .ssl.ClientHandshaker.serverCertificate(Unknown Source) at sun.security.ssl.ClientHandshaker.processMessage(Unknown Source) at sun.security.ssl.Handshaker.processLoop(Unknown Source) at sun.security.ssl.Handshaker.process_record(Unknown)来源)在 sun.security.ssl.SSLSocketImpl。readRecord(Unknown Source) at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source) at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source) at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source) at org. apache.http.conn.ssl.SSLSocketFactory.createLayeredSocket(SSLSocketFactory.java:554) 在 org.apache.http.conn.ssl.SSLSocketFactory.createLayeredSocket(SSLSocketFactory.java:435) 在 org.apache.http.impl.conn。 DefaultClientConnectionOperator.updateSecureConnection(DefaultClientConnectionOperator.java:216) at org.apache.http.impl.conn.ManagedClientConnectionImpl.layerProtocol(ManagedClientConnectionImpl.java:394) at org.apache.http.impl.client.DefaultRequestDirector.establishRoute(DefaultRequestDirector.java: 814) 在 org.apache.http.impl.client。DefaultRequestDirector.tryConnect(DefaultRequestDirector.java:615) at org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java:446) at org.apache.http.impl.client.AbstractHttpClient.doExecute(AbstractHttpClient.java: 863) 在 org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) 在 org.eclipse.ecf.provider.filetransfer.httpclient4.HttpClientFileSystemBrowser.runRequest(HttpClientFileSystemBrowser.java:263) 在 org.eclipse .ecf.provider.filetransfer.browse.AbstractFileSystemBrowser$DirectoryJob.run(AbstractFileSystemBrowser.java:69) at org.eclipse.core.internal.jobs.Worker.run(Worker.java:55) 引起:sun.security.validator .ValidatorException:PKIX 路径构建失败:sun.security.provider.certpath.SunCertPathBuilderException:无法在 sun.security.validator.PKIXValidator.doBuild(Unknown Source) at sun.security.validator.PKIXValidator.engineValidate(Unknown Source) at sun.security.validator.Validator.validate(Unknown Source) 找到请求目标的有效认证路径) 在 sun.security.ssl.X509TrustManagerImpl.validate(Unknown Source) at sun.security.ssl.X509TrustManagerImpl.checkTrusted(Unknown Source) at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown Source) ... 20 多个: sun.security.provider.certpath.SunCertPathBuilderException: 无法在 sun.security.provider.certpath.SunCertPathBuilder 的 sun.security.provider.certpath.SunCertPathBuilder.build(Unknown Source) 找到请求目标的有效认证路径。engineBuild(Unknown Source) at java.security.cert.CertPathBuilder.build(Unknown Source) ... 26 更多
这是因为 java 无法识别https://aws.amazon.com的根证书颁发机构 (CA) SSL 证书的根证书颁发机构 (CA) SSL 证书。
\n\n解决方案是将该证书添加到 java cacerts 文件中,以便它被永久接受。
\n\n步骤1:获取根证书https://aws.amazon.com的根证书
\n\n铬浏览器
\n\n火狐浏览器
\n\n就是这样!您已获得根证书!
\n\n第 2 步:将该证书添加到 java cacerts 文件中。
\n\n\n\n\nkeytool \xe2\x80\x93import \xe2\x80\x93noprompt \xe2\x80\x93trustcacerts \xe2\x80\x93alias ALIASNAME -file\n /PATH/TO/YOUR/DESKTOP/CertificateName.cer -keystore\n /PATH/TO /YOUR/JDK/jre/lib/security/cacerts -storepass changeit
\n
这就对了!你的问题已经解决了。
\n\n请注意
\n\n| 归档时间: |
|
| 查看次数: |
19046 次 |
| 最近记录: |