1. clicking on the certificate error in your browser to view the certificate. and export the certification as 1.cer.
2) Import to java cacert:keytool -import -trustcacerts -file C:\Users\jiali\Desktop\1\1.cer -keystore
3. Add to Trusted Root Certification Authorities in windows MMC:
To manage trusted root certificates for a local computer
- Click Start, click Start Search, type mmc, and then press ENTER.
- On the File menu, click Add/Remove Snap-in.
- Under Available snap-ins, click Local Group Policy Object Editor,click Add, select the computer whose local Group Policy object (GPO) you want to edit, and then click Finish.
- If you have no more snap-ins to add to the console, click OK.
- In the console tree, go to Local Computer Policy, Computer Configuration, Windows Settings, Security Settings, and then click Public Key Policies.
- Double-click Certificate Path Validation Settings,and thenclick the Stores tab.
- Select the Define these policy settings check box.
- Under Per user certificate stores, clear the Allow user trusted root CAs to be used to validate certificates and Allow users to trust peer trust certificates check boxes.
- Under Root certificate stores, select the root CAs that the client computers can trust, and then click OK to apply the new settings.
After import to java cacert, then CMIS workbench tool can access the SSL server.