cancel
Showing results for 
Search instead for 
Did you mean: 

java.security.UnrecoverableKeyException | Password verification failed

chandnigideon13
Product and Topic Expert
Product and Topic Expert
0 Kudos
1,000

Hi All,

We have recently upgraded (1905 to 2105) and migrated to CCV2 from on-prem.

On server startup, we have observed following Warning with UnrecoverableKeyException. Although, the server does startup fine and the sites are also working perfectly, but the following warning comes in the logs:

{

"origin": "catalina",

"timeMillis": 1653514273820,

"thread": "main",

"level": "WARNING",

"loggerName": "org.apache.tomcat.util.net.SSLHostConfig",

"threadId": 1,

"threadPriority": 5,

"message": "The provided trust store password could not be used to unlock and/or validate the trust store. Retrying to access the trust store with a null password which will skip validation.",

"contextMap": {

"sourceClassName": "org.apache.tomcat.util.net.SSLHostConfig",

"sourceMethodName": "getTruststore"

},

"thrown": {

"localizedMessage": "Password verification failed",

"message": "Password verification failed",

"name": "java.security.UnrecoverableKeyException",

"extendedStackTrace": [

{

"class": "sun.security.provider.JavaKeyStore",

"method": "engineLoad",

"file": "JavaKeyStore.java",

"line": 793

},

{

"class": "sun.security.util.KeyStoreDelegator",

"method": "engineLoad",

"file": "KeyStoreDelegator.java",

"line": 222

},


Could anybody please help here?

Thanks in advance!

Accepted Solutions (0)

Answers (1)

Answers (1)

kai_unewisse3
Active Contributor
0 Kudos

Hi,

when you are onPrem, you need to include the SSL certificates of the systems you are communicating with (e.g. SAP PI server). The Keystore file seems to have a different password that the standard one (or you provided), which is your issue.

However, in my experience are these SSL certificates not needed in CCv2. Check if the connections to other systems are still working.