Oracle Analytics Cloud and Server

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

OAS 7.6 SSL configuration issue

Received Response
14
Views
3
Comments
User_PIT98
User_PIT98 Rank 1 - Community Starter

Hello All,

We did fresh installation and configuration for OAS 7.6 everything worked perfect.

tried to implement SSL configurations and updated nodemanager.properties and console (Adminserver & managed server -Keytools & SSL tabs) used below document for reference.

OBIEE 12c/OAS: How To Configure SSL Including Examples (Doc ID 2188982.1)

while restarting services getting below error.

<Oct 9, 2025 11:48:51 AM EDT> <Info> <Security> <BEA-090909> <Using the configured custom SSL Hostname Verifier implementation: weblogic.security.utils.SSLWLSHostnameVerifier$NullHostnameVerifier.>
Unable to connect to running NodeManager on host: xxxxx, due to: Error occurred while performing nmConnect : Cannot connect to Node Manager. : sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
Use dumpStack() to view the full stacktrace :

Fatal: Failed to start one or more Servers (return 3)

Any suggestions to fix this issue?

Thanks,

Suresh.

Answers

  • Hi,
    Welcome to the Oracle Analytics community and forum.

    Where does your SSL certificates come from? Who is the signer? If it isn't a publicly accepted CA, did you import the CA certificate in the default trust keystore?

    If you search in MOS the error you posted, you will find a number of results with that same error. Various products, but all based on WebLogic, and therefore they all give you hints of things to verify to solve your issue.

  • Tim Ouimet
    Tim Ouimet Rank 4 - Community Specialist

    Suresh,

    We've had this similar issue - and two things to check. Ensure that your SSL Certificate is properly signed. We had self-signed through our domain and they weren't acceptable. Needed to be from a proper CA.

    Also - check the alias' are included into the java keystore as well. (That pesky other keystore for the trust cacerts).

  • Suresh,
    As an aside curiosity question, why the new installation of OAS 2024 (7.6) and not OAS 2025 (8.2)?