When trying to launch a server today on my local dev system, after launching box I get the following error:
Connection failure https://objects.githubusercontent.com/github-production-release-asset-2e65be/372924883/d117b8e1-e76d-4ae0-989b-7ed441956198?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20241017%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20241017T151342Z&X-Amz-Expires=300&X-Amz-Signature=a2835fb8bfb5cc7baee66ad0772dd87bc9687c37434d9cb5496d59bea8264b15&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DOpenJDK11U-jre_x64_mac_hotspot_11.0.24_8.tar.gz&response-content-type=application%2Foctet-streamPKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
Not had this before and wondering where to start looking for a fix.
Latest CommandBox
M1 Monterey
Usually an SSL issue. Your network admins likely have a network security appliance which injects its own SSL certs into HTTP traffic so it can snoop on your secure communications. They usually add their custom cert to your OS’s trust store, which is why your browser works fine. Walk down the hall and bonk them over the head and tell them to quit it. Then import the cert into the Lucee keystore inside of CommandBox and cross your fingers.
CommandBox> #sslcertificateinstall objects.githubusercontent.com
and then restart CommandBox
1 Like
Interesting, as far as I know there’s been zero changes, and as I am the admin I know there isnt a security appliance involved. I dont think I actually have any kind of Cert to import.
But Running:
CommandBox> #sslcertificateinstall objects.githubusercontent.com
Results in [NULL] result
Then rebooting works - thanks!
What ISP do you use? I would guess your ISP is involved - not sure, though.
Read the “Original answer” from this post 
. I’m not sure how much it applies if you’re using Chrome with “Certificate Transparency”.
Glad to hear that works. Run this and paste the output here
CommandBox> #sslcertificatelist objects.githubusercontent.com
I’ll go first
[
{
"subject":"CN=*.github.io, O=\"GitHub, Inc.\", L=San Francisco, ST=California, C=US",
"issuer":"CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US"
},
{
"subject":"CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US",
"issuer":"CN=DigiCert Global Root G2, OU=www.digicert.com, O=DigiCert Inc, C=US"
}
]
#sslcertificatelist objects.githubusercontent.com
[
{
"subject":"CN=*.github.io, O=\"GitHub, Inc.\", L=San Francisco, ST=California, C=US",
"issuer":"CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US"
},
{
"subject":"CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US",
"issuer":"CN=DigiCert Global Root G2, OU=www.digicert.com, O=DigiCert Inc, C=US"
}
]
Here’s mine
Yep, that looks like the normal ones-- no signs of a custom cert being injected like is normally the case. Hard to say, but with a lot of SSL errors, it’s not worth tracking down so long as you get it working.