https://communities.sas.com/t5/Administration-and-Deployment/HTTP-internal-ERROR-in-SAS-Environment-manager/m-p/786453#M23559 <P>All,</P> <P>I am getting the below ERROR from Web browser. Tried to login to Backup Manager, SAS studio and Environment manager dashboard. looks like Cache locater and active mQ is working fine</P> <H1>HTTP Status 500 – Internal Server Error</H1> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;seen ERRORs in SAS Studio log&nbsp; looks like certification issue. See below</P> <P>ref:<A href="https://communities.sas.com/t5/SAS-Programming/PROC-http-PKIX-path-building-failed/td-p/656338" target="_blank" rel="noopener">https://communities.sas.com/t5/SAS-Programming/PROC-http-PKIX-path-building-failed/td-p/656338&nbsp;&nbsp;</A></P> <P>looks like&nbsp; we need to do this on the server.can you please suggest on the server side.</P> <P>&nbsp;</P> <P>2021-12-17 10:34:00,323 [tomcat-http--3] ERROR [unknown] com.sas.svcs.security.authentication.validation.jasig<BR />.HttpClientResponseRetriever - sun.security.validator.ValidatorException: PKIX path building failed: sun.secur<BR />ity.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target<BR />javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun<BR />.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested<BR />target<BR />at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)<BR />at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1964)<BR />at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:328)<BR />at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:322)<BR />at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1614)<BR />at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:216)<BR />at sun.security.ssl.Handshaker.processLoop(Handshaker.java:1052)<BR />at sun.security.ssl.Handshaker.process_record(Handshaker.java:987)<BR />at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1072)<BR />at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1385)<BR />at sun.security.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:757)<BR />at sun.security.ssl.AppOutputStream.write(AppOutputStream.java:123)<BR />at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:82)<BR />at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:140)<BR />at org.apache.commons.httpclient.HttpConnection.flushRequestOutputStream(HttpConnection.java:828)<BR />at org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodBase.java:2116)<BR />at org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.java:1096)<BR />at org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(HttpMethodDirector.java:398)<BR />at org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMethodDirector.java:171)<BR />at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:397)<BR />at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:323)<BR />at com.sas.svcs.security.authentication.validation.jasig.HttpClientResponseRetriever.getResponseFromSe<BR />rver(HttpClientResponseRetriever.java:109)<BR />at com.sas.svcs.security.authentication.validation.jasig.AbstractCasProtocolUrlBasedTicketValidator.re<BR />trieveResponseFromServer(AbstractCasProtocolUrlBasedTicketValidator.java:44)<BR />at org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketVali<BR />dator.java:187)</P> <P>.</P> <P>.</P> <P>.</P> <P>.</P> <P>at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:140)<BR />at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:81)<BR />at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:650)<BR />at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87)<BR />at org.apache.catalina.valves.RemoteIpValve.invoke(RemoteIpValve.java:685)<BR />at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:342)<BR />at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:800)<BR />at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66)<BR />at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:800)<BR />at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1471)<BR />at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)<BR />at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)<BR />at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)<BR />at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)<BR />at java.lang.Thread.run(Thread.java:748)<BR />Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target<BR />at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:397)<BR />at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:302)<BR />at sun.security.validator.Validator.validate(Validator.java:262)<BR />at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:324)<BR />at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:229)<BR />at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:124)<BR />at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1596)<BR />... 86 more<BR />Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target<BR />at sun.security.provider.certpath.SunCertPathBuilder.build(SunCertPathBuilder.java:141)<BR />at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:126)<BR />at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:280)<BR />at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:392)<BR />... 92 more<BR />2021-12-17 10:34:00,326 [tomcat-http--3] ERROR [unknown] org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/SASStudio].[coderServlet] - Servlet.service() for servlet [coderServlet] in context with path [/SASStudio] threw exception<BR />java.lang.RuntimeException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target<BR />at com.sas.svcs.security.authentication.validation.jasig.HttpClientResponseRetriever.getResponseFromServer(HttpClientResponseRetriever.java:113)</P> <P>&nbsp;</P> <P>&nbsp;</P> Fri, 17 Dec 2021 12:59:48 GMT sathya66 2021-12-17T12:59:48Z https://communities.sas.com/t5/Administration-and-Deployment/HTTP-internal-ERROR-in-SAS-Environment-manager/m-p/786453#M23559 <P>All,</P> <P>I am getting the below ERROR from Web browser. Tried to login to Backup Manager, SAS studio and Environment manager dashboard. looks like Cache locater and active mQ is working fine</P> <H1>HTTP Status 500 – Internal Server Error</H1> <P>&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;seen ERRORs in SAS Studio log&nbsp; looks like certification issue. See below</P> <P>ref:<A href="https://communities.sas.com/t5/SAS-Programming/PROC-http-PKIX-path-building-failed/td-p/656338" target="_blank" rel="noopener">https://communities.sas.com/t5/SAS-Programming/PROC-http-PKIX-path-building-failed/td-p/656338&nbsp;&nbsp;</A></P> <P>looks like&nbsp; we need to do this on the server.can you please suggest on the server side.</P> <P>&nbsp;</P> <P>2021-12-17 10:34:00,323 [tomcat-http--3] ERROR [unknown] com.sas.svcs.security.authentication.validation.jasig<BR />.HttpClientResponseRetriever - sun.security.validator.ValidatorException: PKIX path building failed: sun.secur<BR />ity.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target<BR />javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun<BR />.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested<BR />target<BR />at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)<BR />at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1964)<BR />at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:328)<BR />at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:322)<BR />at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1614)<BR />at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:216)<BR />at sun.security.ssl.Handshaker.processLoop(Handshaker.java:1052)<BR />at sun.security.ssl.Handshaker.process_record(Handshaker.java:987)<BR />at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1072)<BR />at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1385)<BR />at sun.security.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:757)<BR />at sun.security.ssl.AppOutputStream.write(AppOutputStream.java:123)<BR />at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:82)<BR />at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:140)<BR />at org.apache.commons.httpclient.HttpConnection.flushRequestOutputStream(HttpConnection.java:828)<BR />at org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodBase.java:2116)<BR />at org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.java:1096)<BR />at org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(HttpMethodDirector.java:398)<BR />at org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMethodDirector.java:171)<BR />at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:397)<BR />at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:323)<BR />at com.sas.svcs.security.authentication.validation.jasig.HttpClientResponseRetriever.getResponseFromSe<BR />rver(HttpClientResponseRetriever.java:109)<BR />at com.sas.svcs.security.authentication.validation.jasig.AbstractCasProtocolUrlBasedTicketValidator.re<BR />trieveResponseFromServer(AbstractCasProtocolUrlBasedTicketValidator.java:44)<BR />at org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketVali<BR />dator.java:187)</P> <P>.</P> <P>.</P> <P>.</P> <P>.</P> <P>at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:140)<BR />at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:81)<BR />at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:650)<BR />at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87)<BR />at org.apache.catalina.valves.RemoteIpValve.invoke(RemoteIpValve.java:685)<BR />at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:342)<BR />at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:800)<BR />at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66)<BR />at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:800)<BR />at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1471)<BR />at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)<BR />at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)<BR />at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)<BR />at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)<BR />at java.lang.Thread.run(Thread.java:748)<BR />Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target<BR />at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:397)<BR />at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:302)<BR />at sun.security.validator.Validator.validate(Validator.java:262)<BR />at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:324)<BR />at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:229)<BR />at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:124)<BR />at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1596)<BR />... 86 more<BR />Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target<BR />at sun.security.provider.certpath.SunCertPathBuilder.build(SunCertPathBuilder.java:141)<BR />at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:126)<BR />at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:280)<BR />at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:392)<BR />... 92 more<BR />2021-12-17 10:34:00,326 [tomcat-http--3] ERROR [unknown] org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/SASStudio].[coderServlet] - Servlet.service() for servlet [coderServlet] in context with path [/SASStudio] threw exception<BR />java.lang.RuntimeException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target<BR />at com.sas.svcs.security.authentication.validation.jasig.HttpClientResponseRetriever.getResponseFromServer(HttpClientResponseRetriever.java:113)</P> <P>&nbsp;</P> <P>&nbsp;</P> Fri, 17 Dec 2021 12:59:48 GMT https://communities.sas.com/t5/Administration-and-Deployment/HTTP-internal-ERROR-in-SAS-Environment-manager/m-p/786453#M23559 sathya66 2021-12-17T12:59:48Z https://communities.sas.com/t5/Administration-and-Deployment/HTTP-internal-ERROR-in-SAS-Environment-manager/m-p/786466#M23560 <P>This suggests that the server does not trust the certificate of the server it is trying to connect. This probably means you need to add your root / intermediate certificates to your trust store.</P> <P>&nbsp;</P> <P>SAS 9.4:</P> <P>Manage Certificates in the Trusted CA Bundle Using the SAS Deployment Manager</P> <P><A href="https://go.documentation.sas.com/doc/en/pgmsascdc/9.4_3.5/secref/n0n1y5gwevy312n13h5bm4yf6quy.htm" target="_blank">https://go.documentation.sas.com/doc/en/pgmsascdc/9.4_3.5/secref/n0n1y5gwevy312n13h5bm4yf6quy.htm</A></P> <P>&nbsp;</P> <P>Viya:</P> <P>Manage Truststores</P> <P><A href="https://go.documentation.sas.com/doc/en/calcdc/3.5/calencryptmotion/n1xdqv1sezyrahn17erzcunxwix9.htm#n059h78onwlm1tn1icyp3kifcino" target="_blank">https://go.documentation.sas.com/doc/en/calcdc/3.5/calencryptmotion/n1xdqv1sezyrahn17erzcunxwix9.htm#n059h78onwlm1tn1icyp3kifcino</A></P> <P>&nbsp;</P> Fri, 17 Dec 2021 13:54:46 GMT https://communities.sas.com/t5/Administration-and-Deployment/HTTP-internal-ERROR-in-SAS-Environment-manager/m-p/786466#M23560 gwootton 2021-12-17T13:54:46Z