You are currently reviewing an older revision of this page.

KB-2070 Login fails after hotfix or upgrade with "unable to find valid certification path to requested target" printed in the application server log

Symptoms

Following an upgrade or hotfix, users are no longer able to login. The following error is seen in the application server log:

sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

Cause

For Appian 18.3 and later, certificates must be uploaded via the Appian Administration Console. Prior to Appian 18.3, certificates could be deployed directly into the JDK trust store, as described in KB-1187. In later versions of Appian, every upgrade or hotfix overwrites the JDK trust store. If certificates have not been uploaded into the Appian Administration Console, then they have not been stored in the Appian Primary Database. This means the stored certificates are no longer available after upgrade or hotfix.

Action

Follow the steps listed in KB-1187 to upload the .pem formatted certificate file into the Appian Administration Console.

Affected Versions

This article applies to Appian 18.3 and later.

Last Reviewed: January 2020