cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Former Member
Not applicable
Report Inappropriate Content
Message 1 of 8
‎08-15-2019 10:04 AM

Failed to launch MWG web gui due to Java error: failed to validate certificate

Jump to solution

Hi there!

i'm using mwg 8.1.3 and latest JRE 1.8.0.221 b11, when i trying to launch MWG web gui it will prompt an error saying "failed to validate certificate. the appliacation will not be executed", tried to add MWG url to java security exceptions but seems not working.

 

Full java stack trace is as below:

 

java.lang.NullPointerException
at com.sun.deploy.security.DeployAuthenticator.getPasswordAuthentication(Unknown Source)
at java.net.Authenticator.requestPasswordAuthentication(Unknown Source)
at java.net.SocksSocketImpl$2.run(Unknown Source)
at java.net.SocksSocketImpl$2.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.net.SocksSocketImpl.authenticate(Unknown Source)
at java.net.SocksSocketImpl.connect(Unknown Source)
at java.net.Socket.connect(Unknown Source)
at sun.net.NetworkClient.doConnect(Unknown Source)
at sun.net.www.http.HttpClient.openServer(Unknown Source)
at sun.net.www.http.HttpClient.openServer(Unknown Source)
at sun.net.www.http.HttpClient.<init>(Unknown Source)
at sun.net.www.http.HttpClient.New(Unknown Source)
at sun.net.www.http.HttpClient.New(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection.getNewHttpClient(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection.plainConnect0(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection$6.run(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection$6.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.security.AccessController.doPrivilegedWithCombiner(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection.plainConnect(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection.connect(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection.getInputStream0(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection.access$200(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection$9.run(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection$9.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.security.AccessController.doPrivilegedWithCombiner(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source)
at sun.security.provider.certpath.URICertStore.engineGetCRLs(Unknown Source)
at java.security.cert.CertStore.getCRLs(Unknown Source)
at sun.security.provider.certpath.DistributionPointFetcher.getCRL(Unknown Source)
at sun.security.provider.certpath.DistributionPointFetcher.getCRLs(Unknown Source)
at sun.security.provider.certpath.DistributionPointFetcher.getCRLs(Unknown Source)
at sun.security.provider.certpath.DistributionPointFetcher.getCRLs(Unknown Source)
at com.sun.deploy.security.RevocationChecker$3.run(Unknown Source)
at com.sun.deploy.security.RevocationChecker$3.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at com.sun.deploy.security.RevocationChecker.getCRLsPrivileged(Unknown Source)
at com.sun.deploy.security.RevocationChecker.checkCRLs(Unknown Source)
at com.sun.deploy.security.RevocationChecker.check(Unknown Source)
at com.sun.deploy.security.TrustDecider.checkRevocationStatus(Unknown Source)
at com.sun.deploy.security.TrustDecider.checkTSAPath(Unknown Source)
at com.sun.deploy.security.TrustDecider.getTimeStamp(Unknown Source)
at com.sun.deploy.security.TrustDecider.getValidationState(Unknown Source)
at com.sun.deploy.security.TrustDecider.validateChain(Unknown Source)
at com.sun.deploy.security.TrustDecider.isAllPermissionGrantedInt(Unknown Source)
at com.sun.deploy.security.TrustDecider.isAllPermissionGranted(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.isTrustedByTrustDecider(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.getPermissions(Unknown Source)
at sun.plugin2.applet.Applet2ClassLoader.getPermissions(Unknown Source)
at java.security.SecureClassLoader.getProtectionDomain(Unknown Source)
at java.security.SecureClassLoader.defineClass(Unknown Source)
at java.net.URLClassLoader.defineClass(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.defineClassHelper(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.access$100(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader$2.run(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader$2.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at sun.plugin2.applet.Plugin2ClassLoader.findClassHelper(Unknown Source)
at sun.plugin2.applet.Applet2ClassLoader.findClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass0(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)
at java.lang.ClassLoader.loadClass(Unknown Source)
at sun.plugin2.applet.Plugin2ClassLoader.loadCode(Unknown Source)
at sun.plugin2.applet.Plugin2Manager.initAppletAdapter(Unknown Source)
at sun.plugin2.applet.Plugin2Manager$AppletExecutionRunnable.run(Unknown Source)
at java.lang.Thread.run(Unknown Source)

0 Kudos
Reply
1 Solution

Accepted Solutions
vkleineh
Employee
Employee
Report Inappropriate Content
Message 7 of 8
‎08-19-2019 03:54 AM

Re: Failed to launch MWG web gui due to Java error: failed to validate certificate

Jump to solution

Can you please check if your Java has any proxy configured i.e. a SOCKS proxy? This would result in the error you see.

View solution in original post

0 Kudos
Reply
7 Replies
vkleineh
Employee
Employee
Report Inappropriate Content
Message 2 of 8
‎08-16-2019 03:56 AM

Re: Failed to launch MWG web gui due to Java error: failed to validate certificate

Jump to solution

Hi,

I would like to ask some more information on this, we don't have any similar reports.

Was this working before and if yes, was there someting changed? What browser are you using?

0 Kudos
Reply
Former Member
Not applicable
Report Inappropriate Content
Message 3 of 8
‎08-16-2019 11:51 PM

Re: Failed to launch MWG web gui due to Java error: failed to validate certificate

Jump to solution

Hi VK, 

No, it has been not working after my initial deployment. i currently using the html5 as the workaround.

My browser is IE 11(Win10 1803). also tried with java-webstart, same error.

Now i'm trying Chrome76 and FF68, but seem unable to open MWG web gui:

"Java plugin cannot be started. Please ensure you have Oracle Java installed and Java is enabled in browser settings."

Sorry to ask silly question here, how to solve the above error..? i tried enable java both in Chrome and Internet Options settings but seems not working at all, in FF, i did find where i can enable java (did a lot of google searches 😞  ).

1.png2.png

0 Kudos
Reply
AaronT
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 4 of 8
‎08-16-2019 07:22 AM

Re: Failed to launch MWG web gui due to Java error: failed to validate certificate

Jump to solution
Silly question - did you use your own certificate for user interface (config->proxy -> user interface) or did you use the generic McAfee one?
I've struggled getting untrusted certificates to be trusted in Java. You could try downgrading the security from High to Medium (I think?) in the java control panel. I don't remember the settings to do that, but you should be able to find them if you've tried to add the cert.
0 Kudos
Reply
Former Member
Not applicable
Report Inappropriate Content
Message 5 of 8
‎08-17-2019 12:08 AM

Re: Failed to launch MWG web gui due to Java error: failed to validate certificate

Jump to solution

Hi Aron,

I'm using the default cert for user interface, also tried to import the cert but seems not working, please see the below screenshots:

3.png4.png

0 Kudos
Reply
vkleineh
Employee
Employee
Report Inappropriate Content
Message 6 of 8
‎08-19-2019 01:44 AM

Re: Failed to launch MWG web gui due to Java error: failed to validate certificate

Jump to solution

Hi, 

Chrome and FF will not work anymore since they disabled the support for the java plugin.

Only IE is supported:

https://kc.mcafee.com/corporate/index?page=content&id=KB84154

I tested with the latest Java version you have and I can access the GUI without any problem. Seems to be some problem realted to your client. I am checking with engineering if we can tell more from the provided trace.

Reply
vkleineh
Employee
Employee
Report Inappropriate Content
Message 7 of 8
‎08-19-2019 03:54 AM

Re: Failed to launch MWG web gui due to Java error: failed to validate certificate

Jump to solution

Can you please check if your Java has any proxy configured i.e. a SOCKS proxy? This would result in the error you see.

0 Kudos
Reply
Former Member
Not applicable
Report Inappropriate Content
Message 8 of 8
‎08-19-2019 07:13 AM

Re: Failed to launch MWG web gui due to Java error: failed to validate certificate

Jump to solution

Hi VK, 

You are right, it's a socks proxy software installed on my computer caused this issue..

Thanks, much appreciated!

0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from product experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by employees.
Join the Community
Join the Community

TrellixSkyhigh Security | Support Trellix.com SkyhighSecurity.com

Legal Privacy Copyright © 2023 Musarubra US LLC