|
A2
|
To solve this problem, you need to add the mail server certification to the jvm keystore. To do this, follow these steps:
-
Add the server as a record to the local hosts file. You can find it on:
C:\Windows\System32\drivers\etc\hosts
For example, 10.1.2.35 mail.test.local
-
To obtain the certificate, access the mail server. For example, open an internet browser and go to https://10.1.2.35/. Because the certificate is not trusted, you will probably see the browser’s security alert.
-
Select Continue to this website (not recommended). From the server’s web site, click on Certificate Error.
-
Select View Certificate. Here, under the Details tab, click Copy to File.
-
Select the DER option in the wizard, and save the untrusted certificate to a file. Next, save this file in the Magic xpi temp folder.
-
Open a CMD. From the <Magic xpi installation>\Runtime\jre\bin>, run the command as shown below:
<Magic xpi installation folder>\Runtime\jre\bin>keytool -import -alias myprivateroot -keystore ..\lib\security\cacerts -file <Magic xpi installation folder>Runtime\Temp\mail.test.local.cer
Here, you will be asked for the password. The default password is changeit. After entering the password, you will see the certification details. For example:
Owner: CN=mail.test.local
Issuer: CN=mail.test.local
Serial number: 68feb893589ccd9b468588b90
Valid from: Sat Jun 13 15:49:07 IDT 2??9 until: Thu Jun 1? 15:49:07 IDT 20??
Certificate fingerprints:
MD5: EF:82:01:?:95:EB:57:?B:47:?:BB:BD:BC:D2
SHA1: A8:2F:C?7D:3?2B:00:B7:7E:FA:?:C4??1:40:A9:D4
-
Finally, you will be asked if you trust this certificate. Enter Y for yes:
Trust this certificate? [no]: y
The following message will then appear, confirming that the certification has been successfully added:
Certificate was added to keystore
For additional information you can visit sites and forums, such as this one:
http://www.java-samples.com/showtutorial.php?tutorialid=210
|
