If the certificate of CA that signed the certificate of application/server (REDCap, LDAP, etc) that OpenSpecimen is attempting to connect is not in the trust store by default, or if a proprietary certificate is being used, then that certificate needs to be installed in the JVM’s trust store.
Given below are the steps to import the certificate in trust store:
Copy the CA (root) certificate to the directory
$JAVA_HOME/jre/lib/security
Change directory to
$JAVA_HOME/jre/lib/security
Import the certificate in trust store using the following command:
$ keytool -import -alias <certificate_alias> \ -file <certificate_file.cer> \ -keystore cacerts \ -storepass changeit
On importing, restart the OpenSpecimen server/process.