Highlighted
Valued Contributor.
Valued Contributor.
466 views

Error getting region when creating an AWS monitor

Jump to solution

Hello,


I use Sitescope 11.20 and I try to create an AWS Monitor but when I want get Region, I obtain the following error :


sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target


I'm sure about my aws credentials and theirs privileges because I created this monitor few month ago so I don't understand why now  I obtain this error.


Do you have idea about this problem  ?

Thanks,

Cdric

Labels (1)
0 Likes
1 Solution

Accepted Solutions
Highlighted
Micro Focus Expert
Micro Focus Expert

Re: Error getting region when creating an AWS monitor

Jump to solution

Something looked strange so I  did a clean install of SiteScope 11.20 as you mentioned then confirmed  SunCertPathBuilderException here.

I then patched it up to SiteScope 11.24, and now it seems not receiving this error.

 

Most likely server-side Java upgrade is helping this at Java level for some changes around AWS environments:
[SiteScope 11.20] is using java version "1.7.0_03"
[SiteScope 11.24] is using java version "1.7.0_51"

(*) Just if this still is not helping, please give it a try with the latest SiteScope 11.31:
 (SiS) Support Tip : SiteScope 11.31 java version

Regards,

View solution in original post

0 Likes
9 Replies
Highlighted
Micro Focus Expert
Micro Focus Expert

Re: Error getting region when creating an AWS monitor

Jump to solution

Can you check if you can access this URL from your SiteScope host or not, e.g. in IE or in SiteScope Web Tools?
https://ec2.amazonaws.com

If your environment may require Proxy to access the public internet, please check Proxy Settings.

Regards,

0 Likes
Highlighted
Micro Focus Expert
Micro Focus Expert

Re: Error getting region when creating an AWS monitor

Jump to solution

Just if you still do not find any clue here, you can enable DEBUG by editing below log4j setting file as:

<SiteScope>\conf\core\Tools\log4j\PlainJava\log4j.properties
...
#
# Amazon EC2 Integration log
#
##log4j.category.com.mercury.sitescope.monitors.amazon.cw=${loglevel}, amazon.ec2.integration.appender
log4j.category.com.mercury.sitescope.monitors.amazon.cw=DEBUG, amazon.ec2.integration.appender
log4j.additivity.com.mercury.sitescope.monitors.amazon.cw=false
...

Then you should check:
<SiteScope>\logs\amazon_ec2_integration.log

Regards,

0 Likes
Highlighted
Valued Contributor.
Valued Contributor.

Re: Error getting region when creating an AWS monitor

Jump to solution

Hello,


I can access to https://ec2.amazonaws.com from my sitescope host. I edited log4j file but I don't see in log file more explanation about my error :

 


2015-10-29 08:09:58,548 [http-8080-Processor22] (AWSHttpClient.java:412) DEBUG - calling DescribeRegions request with parameters: {Action=DescribeRegions}
2015-10-29 08:09:58,564 [http-8080-Processor22] (AWSHttpClient.java:412) DEBUG - parameters added: {Action=DescribeRegions, SignatureMethod=HmacSHA256, AWSAccessKeyId=AKIAJVAGK2F2IKRMYAGA, SignatureVersion=2, Version=2011-05-15, Signature=GZD5Lu5+vLvS5C9EElZUAj8/Tw9pcKoH/o2pLTQgLXE=, Timestamp=2015-10-29T07:09:58.548Z}
2015-10-29 08:09:58,564 [http-8080-Processor22] (AWSHttpClient.java:412) DEBUG - calling host:  https://ec2.amazonaws.com
2015-10-29 08:09:58,860 [http-8080-Processor22] (AWSHttpClient.java:418) DEBUG - Caught Exception
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
    at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
    at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1868)
    at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276)
    at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270)
    at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1337)
    at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:154)
    at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868)
    at sun.security.ssl.Handshaker.process_record(Handshaker.java:804)
    at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:998)
    at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1294)
    at sun.security.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:685)
    at sun.security.ssl.AppOutputStream.write(AppOutputStream.java:111)
    at org.apache.commons.httpclient.HttpConnection$WrappedOutputStream.write(HttpConnection.java:1368)
    at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:82)
    at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:140)
    at org.apache.commons.httpclient.HttpConnection.flushRequestOutputStream(HttpConnection.java:799)
    at org.apache.commons.httpclient.MultiThreadedHttpConnectionManager$HttpConnectionAdapter.flushRequestOutputStream(MultiThreadedHttpConnectionManager.java:1234)
    at org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodBase.java:2277)
    at org.apache.commons.httpclient.HttpMethodBase.processRequest(HttpMethodBase.java:2657)
    at org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.java:1093)
    at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:675)
    at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:529)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSHttpClient.performPostRequest(AWSHttpClient.java:179)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSHttpClient.describeRegions(AWSHttpClient.java:95)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSHttpClient.getRegionsMap(AWSHttpClient.java:424)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSPreferencesUtil.getAvailableRegionsForAmazon(AWSPreferencesUtil.java:62)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSPreferencesUtil.getAvailableRegionsForAmazon(AWSPreferencesUtil.java:53)
    at com.mercury.sitescope.api.AmazonMonitorProxy.getAvailableRegionsForAmazon(AmazonMonitorProxy.java:27)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at com.mercury.util.proxy.servlet.RemoteProxyServlet.doPost(RemoteProxyServlet.java:60)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:647)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
    at sun.reflect.GeneratedMethodAccessor126.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:162)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:262)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.mercury.sitescope.web.servlet.filter.AuthenticationFilterBase.doFilter(AuthenticationFilterBase.java:84)
    at sun.reflect.GeneratedMethodAccessor138.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.hp.sw.bto.security.bsf.csrf.CsrfGuardFilter.doFilter(CsrfGuardFilter.java:67)
    at com.mercury.sitescope.web.servlet.filter.CSRFGuardFilterWrapper.doFilter(CSRFGuardFilterWrapper.java:44)
    at sun.reflect.GeneratedMethodAccessor139.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.mercury.topaz.webinfra.filters.UserStatsLogFilter.doFilter(UserStatsLogFilter.java:113)
    at sun.reflect.GeneratedMethodAccessor128.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.mercury.sitescope.web.servlet.filter.MLUFilter.doFilter(MLUFilter.java:42)
    at sun.reflect.GeneratedMethodAccessor127.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.mercury.sitescope.web.servlet.filter.SecurityContentFilter.doFilter(SecurityContentFilter.java:52)
    at sun.reflect.GeneratedMethodAccessor129.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)
    at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:172)
    at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:563)
    at com.mercury.sitescope.web.tomcat.valves.PreventSessionFixationValve.invoke(PreventSessionFixationValve.java:59)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
    at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117)
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108)
    at com.mercury.sitescope.web.tomcat.valves.RequestParametersParserValve.invoke(RequestParametersParserValve.java:57)
    at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:174)
    at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:879)
    at org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:665)
    at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:528)
    at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:81)
    at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689)
    at java.lang.Thread.run(Thread.java:722)
Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
    at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385)
    at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292)
    at sun.security.validator.Validator.validate(Validator.java:260)
    at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326)
    at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231)
    at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126)
    at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1319)
    ... 129 more
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
    at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196)
    at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268)
    at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380)
    ... 135 more
2015-10-29 08:09:58,876 [http-8080-Processor22] (AWSHttpClient.java:199) ERROR - javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
2015-10-29 08:09:58,876 [http-8080-Processor22] (AWSPreferencesUtil.java:65) DEBUG - getAvailableRegionsForAmazon - Cannot get regionsjavax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
    at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
    at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1868)
    at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276)
    at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270)
    at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1337)
    at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:154)
    at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868)
    at sun.security.ssl.Handshaker.process_record(Handshaker.java:804)
    at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:998)
    at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1294)
    at sun.security.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:685)
    at sun.security.ssl.AppOutputStream.write(AppOutputStream.java:111)
    at org.apache.commons.httpclient.HttpConnection$WrappedOutputStream.write(HttpConnection.java:1368)
    at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:82)
    at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:140)
    at org.apache.commons.httpclient.HttpConnection.flushRequestOutputStream(HttpConnection.java:799)
    at org.apache.commons.httpclient.MultiThreadedHttpConnectionManager$HttpConnectionAdapter.flushRequestOutputStream(MultiThreadedHttpConnectionManager.java:1234)
    at org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodBase.java:2277)
    at org.apache.commons.httpclient.HttpMethodBase.processRequest(HttpMethodBase.java:2657)
    at org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.java:1093)
    at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:675)
    at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:529)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSHttpClient.performPostRequest(AWSHttpClient.java:179)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSHttpClient.describeRegions(AWSHttpClient.java:95)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSHttpClient.getRegionsMap(AWSHttpClient.java:424)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSPreferencesUtil.getAvailableRegionsForAmazon(AWSPreferencesUtil.java:62)
    at com.mercury.sitescope.monitors.amazon.cw.amazonapi.service.AWSPreferencesUtil.getAvailableRegionsForAmazon(AWSPreferencesUtil.java:53)
    at com.mercury.sitescope.api.AmazonMonitorProxy.getAvailableRegionsForAmazon(AmazonMonitorProxy.java:27)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at com.mercury.util.proxy.servlet.RemoteProxyServlet.doPost(RemoteProxyServlet.java:60)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:647)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
    at sun.reflect.GeneratedMethodAccessor126.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:162)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:262)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.mercury.sitescope.web.servlet.filter.AuthenticationFilterBase.doFilter(AuthenticationFilterBase.java:84)
    at sun.reflect.GeneratedMethodAccessor138.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.hp.sw.bto.security.bsf.csrf.CsrfGuardFilter.doFilter(CsrfGuardFilter.java:67)
    at com.mercury.sitescope.web.servlet.filter.CSRFGuardFilterWrapper.doFilter(CSRFGuardFilterWrapper.java:44)
    at sun.reflect.GeneratedMethodAccessor139.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.mercury.topaz.webinfra.filters.UserStatsLogFilter.doFilter(UserStatsLogFilter.java:113)
    at sun.reflect.GeneratedMethodAccessor128.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.mercury.sitescope.web.servlet.filter.MLUFilter.doFilter(MLUFilter.java:42)
    at sun.reflect.GeneratedMethodAccessor127.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at com.mercury.sitescope.web.servlet.filter.SecurityContentFilter.doFilter(SecurityContentFilter.java:52)
    at sun.reflect.GeneratedMethodAccessor129.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:601)
    at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:244)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:536)
    at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:276)
    at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:218)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:210)
    at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:52)
    at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:171)
    at java.security.AccessController.doPrivileged(Native Method)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:167)
    at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)
    at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:172)
    at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:563)
    at com.mercury.sitescope.web.tomcat.valves.PreventSessionFixationValve.invoke(PreventSessionFixationValve.java:59)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
    at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117)
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108)
    at com.mercury.sitescope.web.tomcat.valves.RequestParametersParserValve.invoke(RequestParametersParserValve.java:57)
    at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:174)
    at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:879)
    at org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:665)
    at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:528)
    at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:81)
    at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689)
    at java.lang.Thread.run(Thread.java:722)
Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
    at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385)
    at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292)
    at sun.security.validator.Validator.validate(Validator.java:260)
    at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326)
    at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231)
    at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126)
    at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1319)
    ... 129 more
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
    at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196)
    at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268)
    at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380)
    ... 135 more

0 Likes
Highlighted
Micro Focus Expert
Micro Focus Expert

Re: Error getting region when creating an AWS monitor

Jump to solution

So what's [Run Tool] result from SiteScope Tool?

e.g.
[Tools] > [ Web Tools] > [URL Tool]
URL: https://ec2.amazonaws.com

Also is your browser using any automatic proxy configuration or not?

Regards,

 

 

 

0 Likes
Highlighted
Valued Contributor.
Valued Contributor.

Re: Error getting region when creating an AWS monitor

Jump to solution

I haven't proxy in my browser and Sitescope is installed on Amazon VM.

 

The result of web tool is

 


Result: Untrusted server certificate chain. Use 'Preferences' -> 'Certificate Management' to manage trusted certificates 

 

URL: https://ec2.amazonaws.com

Total time: 0.702 seconds  

 

Content Match Results:   Matched:  

Error Content Match Results:   Matched:    


SITESCOPE HTTP REQUEST HTTP REQUEST HTTP REQUEST HTTP REQUEST HTTP REQUEST HTTP REQUEST
GET / HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 4.01; Windows NT)
Pragma: No-Cache
Accept: */*
Host: ec2.amazonaws.com
SITESCOPE                                         BLANK LINE

 

 

EDIT : gtecybertrust5ca is the only expired certificate. I try to ignore this certificate (unchek the counter expired certificate)  but the problem still occurs.

 
 

 

0 Likes
Micro Focus Expert
Micro Focus Expert

Re: Error getting region when creating an AWS monitor

Jump to solution

Will this make any change?

'Preferences' -> 'Certificate Management'
Import Certificates
Source Selection > Host ec2.amazonaws.com Port 443 [Load]
Loaded Certificates > [Select All] then [Import]

Regards,

0 Likes
Highlighted
Valued Contributor.
Valued Contributor.

Re: Error getting region when creating an AWS monitor

Jump to solution

Same problem when I try to create a monitor but now the web tool seem to work well.

 

2 certificates were imported :

 

Symantec Corporation

Verisign Inc

0 Likes
Highlighted
Micro Focus Expert
Micro Focus Expert

Re: Error getting region when creating an AWS monitor

Jump to solution

Something looked strange so I  did a clean install of SiteScope 11.20 as you mentioned then confirmed  SunCertPathBuilderException here.

I then patched it up to SiteScope 11.24, and now it seems not receiving this error.

 

Most likely server-side Java upgrade is helping this at Java level for some changes around AWS environments:
[SiteScope 11.20] is using java version "1.7.0_03"
[SiteScope 11.24] is using java version "1.7.0_51"

(*) Just if this still is not helping, please give it a try with the latest SiteScope 11.31:
 (SiS) Support Tip : SiteScope 11.31 java version

Regards,

View solution in original post

0 Likes
Highlighted
Valued Contributor.
Valued Contributor.

Re: Error getting region when creating an AWS monitor

Jump to solution

Thanks, it's work.

 

For information,


I installed SIS_00312 but new error appeared. Something like this "Aws can't verify credential."


So I installed SIS_00355 and it's works.


Also, I try to install Sitescope 11.30 but AWS monitor isn't available without license.

 

Regards,

Cdric

 

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.