If your application server does not have a SSL certificate, you can shop online for one. You can get a paid version at https://www.thesslstore.nl/ or https://www.sslcertificaten.nl/ for instance or you can use the limited free version of https://letsencrypt.org/. Which one you use is up to you.
To check if your certificate is properly installed you can open your application server URL in your browser and check for a secure connection (most browsers will notify you when there is a problem with your certificate). Also you can use the online tool https://www.ssllabs.com/ssltest/ to do an elaborate scan of your certificate.
Note that servers should use TLS 1.2 or higher and route trafic only through port 443
@vidavidorra: this seems to me to be not a certificate error but an error from your server because it checks a customer ID and does not encounter it on the test message. Please note that the test button actually sends a LoRa-like message to your server, but since no device is associated, many fields will be left empty or at NULL. If you catch the testmessage post you will see this. I suspect your server to reject messages like these and nicely create an error. Could this be the case?
I have set up a server with a valid LetsEncrypt certificate and validated it with https://www.ssllabs.com/ssltest but a test-post from your backend to our server results in a
Some digging in google resulted in the following post http://stackoverflow.com/questions/34110426/does-java-support-lets-encrypt-certificates
It seems the certificate from LetsEncrypt is supported from java version 1.8.0_101 and have verified that SSLPoke with java version 188.8.131.52 resulted in the exact same error as above, but SSLPoke with java version 1.8.0_101 could indeed successfully connect to my server.
SSLPoke can be downloaded from https://confluence.atlassian.com/kb/unable-to-connect-to-ssl-services-due-to-pkix-path-building-failed-779355358.html
Thanks for looking into this, it really helped us!
I have the same problem as Marcel, I get also an error message :
Response status: -1 CONNECTION FAILED, ETag: null, body: 'javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target']
I use a letsencrypt SSL certificate on a apache webserver. When i run https://www.ssllabs.com/ssltest it seem that everything is Okay. The CA Root certificate is from "DST Root CA X3" .
Is this a problem on my server or is this a problem on de KPN site?
i get a return code 200. this is better.
Server returned HTTP response code 200
Informatie van GET
Array ( [LrnDevEui] => 0059AC00001815BB [LrnFPort] => 1 [LrnInfos] => null [AS_ID] => yourcompany.developer [Time] => 2016-10-10T11:16:17.256
Informatie van POST
Array ( )
Also verified my certificate using https://www.ssllabs.com/ssltest, but got the same error message when performing the test in the developer portal.
I've also just tried to send packets from my device, but those packets did not make it through to my server.
Using the 'old' KPN interface (deviceManager) it was working just fine with the same setup, so to me it seems to be an issue in the new DeveloperPortal.
As extra info the error code below (please note that I did re-added the device to the portal.) Is it required to delete and add the device again in the portal??
Thanks for the help!
Error in sending rest post to developer url https:///put, for device 0059AC0000180F00, payloadhex 000000. Error details: restservices.consume.RestConsumeException -1. Rest request failed: [HTTP Request: POST '/put?LrnDevEui=0059AC0000180F00&LrnFPort=1&LrnInfos=null&AS_ID=TentaclesInnovation.developer&Time=2016-11-28T16:19:57.891+01:00&Token=fd47c092163d0c79e214651facde780b065f8f63a041117d29f2d008eabdc455' --> Response status: -1 CONNECTION FAILED, ETag: null, body: 'javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target']
Testing my SSL certification on ssllabs.com gives an overall rating A.
What does the response mean?