Novell Home

My Favorites

Close

Please to see your favorites.

Error viewing secure URL (https://) using HTML gadget

(Last modified: 04Sep2003)

This document (10086735) is provided subject to the disclaimer at the end of this document.

fact

Novell NetWare 6 Support Pack 3

Novell Portal Services 1.5

Novell exteNd Director 4.1 Standard Edition

symptom

Error viewing secure URL (https://) using HTML gadget

Error accessing secure pages (via HTTPS) using HTML gadget

Error: "URL is not valid! This could mean the url does not exist or that the URL contains frames. If the URL exists try accessing this resource with the IFrame gadget"

cause

The problem is caused because the HTML gadget is not able to automatically accept the certificate that is passed by the web server (when the HTML gadget attempts to view the secure page)

fix

To fix the problem with the "URL is not valid!" error, you need to import your web server's Trusted Root Certificate into your cacerts or jssecacerts trust store file.
 
1. Export the server certificate for your NPS/ExteNd Director server from a web browser that you have already used to login to that server via HTTPS (i.e. the browser has already accepted the certificate).  In IE, click on Tools>Internet Options>Content>Certificates>Intermediate Certificate Authorities, then highlight the cert for your server and click "Export".  Choose *.DER as the format and then save the file to your C:\ drive (i.e. C:\TrustedRootCert.der)

2.  Find the CACERTS file on your Director server and make a backup copy.  It is typically located in the \JAVA\LIB\SECURITY directory

3.  Next, find the KEYTOOL.EXE file on the workstation.  You must use KEYTOOL.EXE that comes with JVM 1.3 or newer, keytool that comes with JVM 1.2.2 or older does not work. Keytool is located in the \BIN\ folder relative to your Java home folder on the workstation.  For example, C:\JDK1.3.1_02\BIN\KEYTOOL.EXE.  You can download the latest JVM at http://java.sun.com/

4.  Next, from a DOS prompt change to the directory where the KEYTOOL.EXE file is located (i.e. C:\JDK1.3.1_02\BIN or C:\j2sdk1.4.0_01\BIN).  From this directory run the following command:

keytool -import -alias <aliasName> -file <C:\TrustedRootCert.der> -keystore <H:\java\lib\security\cacerts> -storepass changeit

Replace <aliasName> with a unique name for this certificate.  Replace <TrustedRootCert.der> with the full  path to the file you exported in step 1, (i.e. C:\TrustedRootCert.der) and make sure that the full path for cacerts is specified (i.e. H:\java\lib\security\cacerts)

**Note:** "changeit" is the default keystore password.  Use the appropriate keystore password if it has been changed.

5. Exit and restart Apache Tomcat33 and/or Tomcat4.

Once you  import that certificate, HTML gadgets should be able to access secure pages without any problems.

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

  • Document ID:
  • 10086735
  • Solution ID: NOVL92270
  • Creation Date: 04Sep2003
  • Modified Date: 04Sep2003
    • NovellexteNd

Did this document solve your problem? Provide Feedback