unable to find valid certification path to requested target

Question

I am trying to run a simple Java code to query a DynamoDB table.

I have correct credentials.

I have downloaded the certificate  (from Dynamodb on the console) as .der file and loaded to C:\CORRETTO\amazon-corretto-17.0.5.8.1-windows-x64-jdk\jdk17.0.5_8\lib\security

I rebooted the computer and still getting 
Caught an AmazonClientException, which means the client encountered a serious internal problem while trying to communicate with AWS, such as not being able to access the network.
Error Message: Unable to execute HTTP request: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

Can you assist please?

Answer

Applications accessing DynamoDB or DynamoDB Streams API endpoints (whether through browsers or programmatically) will need to update the trusted CA list on the client machines if they do not already support any of the following CAs:

* Amazon Root CA 1
* Starfield Services Root Certificate Authority - G2
* Starfield Class 2 Certification Authority

If the clients already trust ANY of the above three CAs then these will trust certificates used by DynamoDB and no action is required. However, if your clients do not already trust any of the above CAs, the HTTPS connections to the DynamoDB or DynamoDB Streams APIs will fail. For more information, please visit this blog post: https://aws.amazon.com/blogs/security/how-to-prepare-for-aws-move-to-its-own-certificate-authority/.

Source: https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/ats-certs.html

unable to find valid certification path to requested target

相關內容