The message “com.sun.jersey.api.client.ClientHandlerException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: signature check failed” means that the application was not able to build a successful certificate chain between the presented endpoint certificate and a trusted certificate issued by a Certificate Authority.
Is the server certificate self-signed? If so, you will need to add the certificate to the truststore. If it is signed by a well-known CA, you can use the default JRE truststore “$JAVA_HOME/jre/lib/security/cacerts” which provides a list of selected certificate authority public keys. The default password is “changeit”.
If you are using a custom CA, you can follow Matt’s article he linked above. This will walk you through step-by-step instructions on setting up your keystore and truststore.
PGP Fingerprint: 70EC B3E5 98A6 5A3F D3C4 BACE 3C6E F65B 2F7D EF69