cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Not a customer? Start a free trial

Click the Start a free trial link to start a 15-day SaaS trial of our product and join our community as a trial user. If you are an existing customer do not start a free trial.

AppDynamics customers and established members should click the sign in button to authenticate.

Java (Java Agent, Installation, JVM, and Controller Installation)

Machine Agent Throws SSL Error

muktabh.ranjan
Explorer

Machine Agent Throws SSL Error

Machine agent is conneting to Controller throught Proxy, We are getting below error in Machine Agent Log.

Not possible to provide complete Log from the Prod environment, as it is locked down.

I can do a Webex to show the same.

 

AD Thread Pool-Global0] 20 Dec 2017 11:37:16,390  WARN SystemAgent - Certificate chain validation failed sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target attempting validation.
[AD Thread Pool-Global0] 20 Dec 2017 11:37:16,390 ERROR SystemAgentPollingForUpdate - Fatal transport error while connecting to URL [/controller/instance/96/systemagentpolling]: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

By replying you agree to the Terms and Conditions of the AppDynamics Community.
Machine Agent Throws SSL Error
3 REPLIES 3
gurmitsa
Architect

Re: Machine Agent Throws SSL Error

Looks like you are using SSL, are you sure you have the keystore file under the <machine_agent_home>\conf folder?

muktabh.ranjan
Explorer

Re: Machine Agent Throws SSL Error

Hi Gurmista,

 

Thanks. Yes we are using SSL. By keystore file you mean the SSL Certificate file ? Where do you get this keystore file ?

 

Regards,

Muktabh

 

Saradhi.Potharaju
AppDynamics Team

Re: Machine Agent Throws SSL Error

Hi Muktabh,

 

Following article explains how you configure machine agent for SSL and how to extract the certs.

https://docs.appdynamics.com/display/PRO44/Enable+SSL+for+Standalone+Machine+Agent

 

If your configuration is to make machine agent connect through a reverse proxy which in turn connects to the Contoller, then the SSL endpoint would be your proxy and in that case you would need to import the certs that are configured on your proxy into the machine agent truststore (cacerts.jks).

 

Regards,
Saradhi