If the certificate of CA that signed the certificate of application/server (REDCap, LDAP, etc) that OpenSpecimen is attempting to connect is not in the trust store by default, or if a proprietary certificate is being used, then that certificate needs to be installed in the JVM’s trust store.
Given below are the steps to import the certificate in trust store:
The certificates need to be imported into the JVM trust store as well.
Copy the CA (root) certificate to the directory
$JAVA_HOME/jre/lib/securityChange directory to
$JAVA_HOME/jre/lib/securityImport the certificate in trust store using the following command:
$ keytool -import -alias <certificate_alias> \ -file <certificate_file.cer> \ -keystore cacerts \ -storepass changeitOn importing, restart the OpenSpecimen server/process.