Question
swift
swift
MY
swift
Posted: Mar 4, 2025
Last activity: Apr 7, 2025
Last activity: 7 Apr 2025 9:40 EDT
Solved
The PDC keystore file does not exist in your system.
Hi , I have a question regarding the PDC certificate.
I have already followed the guideline for Installing SSL certificates and placed the PDC certificate into our truststore.
when i run connectivity test and see pega log "ERROR- com.pega.pegarules.pub.services.ConnectorException: Caught unhandled exception: java.lang.RuntimeException: javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target"
I assume this means the certificate was not properly configured on our local machine. Can you advise on how I can solve this issue?
Thank you.
Accepted Solution
Posted: 10 months ago
Updated: 10 months ago
Updated: 7 Apr 2025 9:40 EDT
MOD
Pegasystems Inc.
GB
@MohdNurHaizhamS17111026 I entered your issue in our new MSP GenAI Support Buddy:
https://support.pega.com/question/certificate-invalid-path-error
https://support.pega.com/discussion/soap-service-issue-after-update-prpc718-prpc72
---------------------
Suggestion:
Solution Steps
1. Download the Root CA Certificate (if not already done)
While you mentioned that you've already placed the PDC certificate into your truststore, the error suggests that either the certificate wasn't imported correctly or you might be using the wrong certificate. Pega strongly recommends using the Root CA certificate rather than the pegacloud.com certificate since:
If you need to redownload the certificate, follow these steps:
@MohdNurHaizhamS17111026 I entered your issue in our new MSP GenAI Support Buddy:
https://support.pega.com/question/certificate-invalid-path-error
https://support.pega.com/discussion/soap-service-issue-after-update-prpc718-prpc72
---------------------
Suggestion:
Solution Steps
1. Download the Root CA Certificate (if not already done)
While you mentioned that you've already placed the PDC certificate into your truststore, the error suggests that either the certificate wasn't imported correctly or you might be using the wrong certificate. Pega strongly recommends using the Root CA certificate rather than the pegacloud.com certificate since:
If you need to redownload the certificate, follow these steps:
2. Import the Certificate into JVM Truststore
The most common reason for this error is that the certificate wasn't properly imported into the JVM truststore. Use the keytool utility to import it correctly:
Where:
<Path to SSL certificate>is the location of your downloaded Root CA certificate<Path to JVM truststore file>is the location of your JVM's truststore file (typically found at$JAVA_HOME/lib/security/cacertsor similar location)"pegaRootCA"is an alias to identify this certificate in your truststoreYou'll be prompted for the truststore password (the default is often "changeit" unless your organization has changed it).
3. Verify Proper TLS Ciphers
PDC requires specific TLS ciphers for connection. Ensure your system uses one of these:
4. Restart Your Application Server
After importing the certificate into the truststore, restart your application server for the changes to take effect.
5. Verify Connection
Run the connectivity test again to verify that the SSL handshake error is resolved.
If you continue to experience issues, please let me know more details about your environment, such as:
References:
-------------------------------------------------------
If the above does not help, please log a support incident via the MSP.