Hello:
I was "listening" in to this one because I'm suffering the same inability to
send emails,
I get the same error messages.
I have tried with yahoo, Gmail, Hotmail and my website's email, with my
Antivirus disconnected or not, with Chrome's "less secure" active or not, with
465, 443, 587, 80, enabled, not enabled, and nothing works with sending an
invitation while in a room (haven't found yet any other way of sending an
invitation).
Could you please tell me what do you mean by:
"Open OS and software firewall SMTP ports.
Set hardware firewall policies NAT allow from your server to WAN."
I looked for the Firewall settings:
Firewall Settings > Apps allowed
These are the ones not allowed that I feel might be related
----------------------
Captura SNMP (SNMP capture?)
Esta característica permite que este equipo pueda recibir el tráfico del
Servicio de captura de SNMP.
Enrutamiento y acceso remoto (Routing and remote access?)
Esta característica se usa para permitir las conexiones VPN y RAS entrantes.
Protocolo de túnel de sockets seguros (Secure Socket Tunnel Protocol)
Esta característica se usa para permitir las conexiones VPN entrantes que usan
el protocolo de túnel de sockets seguros (SSTP). (Usa HTTPS)
Servicio iSCSI (ISCSI service?)
Esta característica se usa para conectarse a servidores y dispositivos de
destino iSCSI.
---------------------------------------
I have also seen the advanced Firewall Settings ("Entry rules" and "Exit
rules", I have a Spanish version of Windows 10), but I don’t know what/if I
should change.
I wanted to use Gmail as my option for sending emails. Excuse my ignorance,
but should I get my own CA certificate or do I get it from Gmail. Do I have to
do something to earn it?
My website is HTTPS thanks to a SSL certificate delivered by CPanel (the free
version). If I used my website's email as sender and system email (it would be
the same email I signed up to OpenMeetings with) would this certificate be
equivalent to the CA certificate you mention?
I have been reading about some Certificate installing procedures but they seem
outdated (jre 1.6)
http://s-n-ushakov.blogspot.com/2013/11/yet-another-installcert-for-java-now.html
https://javaee.github.io/javamail/InstallCert
I haven't found a way to download or export the CPanel certificate (if I can)
but have some details:
Certificate ID:, Domains:, Key Size:, Expiration:, and the Issuer: cPanel,
Inc., however I have noticed that CPanel is not among the trusted CAs (I
understand it's a "Comodo" certificate.
If I insist on Gmail can I use the CPanel one or would I have to buy a CA
certificate? or would you suggest getting a free one if buying is not possible?
Thanks,
Richard Pérez-Mongard
--------------------------------------------
On Thu, 13/7/17, <[email protected]> wrote:
Subject: Re: help configuration smtp server
To: [email protected]
Date: Thursday, 13 July, 2017, 9:07
On 13.07.2017 02:58, Maxim Solodovnik wrote:
Hello,
This error "unable
to find valid certification path to requested
target" usually means certificate chin is not
recognized to be secure
I believe you need to import your CA certificate will
all intermediate certificates to JRE
(jre/lib/security/cacerts)
On Thu, Jul 13, 2017
at 1:43 AM, Coscend@OM <[email protected]>
wrote:
Hello
Maxime,
In the spirit of
assisting you, here are a few vectors to resolve your
issue:
Issue: "unable
to find valid certification path to requested target
at com.sun.mail.smtp.
SMTPTransport.startTLS"
Suggestions:
1. OM
configuration issue:
Configure Admin ->
Configuration
Smtp_server: this is the smtp server to send messages.
Smtp_port: this is the smtp server port
normally 25 or 80, if using no SSL,
otherwise 443 if using SSL encrypted e-mail.
System_email_addr: all sent e-mails by the
system including invitations
will have this
address:
Email_username (System
authentication email username): your e-mail's
username: .... or on how your third party
e-mail client is configured.
Email_userpass: the password of your e-mail's
username
Mail.smtp.starttls.enable: 0 (if
above 25 or 80) or 1 (if above is 443)
Enable TLS 1=true, 0=false
For example, in GMail,
Smtp_server: smtp.gmail.com
Smtp_port: Port 465 (SSL required)
Port 587 (TLS required)
2. Additional: Firewall
Open OS and software firewall SMTP ports.
Set hardware firewall policies NAT allow from your server to
WAN.
Thank you.
Sincerely,
Hemant K. Sabat
Coscend Communications Solutions
www.Coscend.com
------------------------------
------------------------------ ------
Real-time, Interactive Video Collaboration, Tele-healthcare,
Tele-education,
Telepresence Services, on
the fly...
------------------------------
------------------------------ ------
CONFIDENTIALITY NOTICE: See 'Confidentiality Notice
Regarding E-mail
Messages from Coscend
Communications Solutions' posted at:
http://www.Coscend.com/Terms_
and_Conditions.html
-----Original Message-----
From: [email protected]
[mailto:[email protected]]
Sent: Wednesday, July 12, 2017 12:29 PM
To: [email protected]
Subject: help configuration smtp server
Hello,
We are installing a version of openmeetings
(last stable) on a stretch
Debian.
Everything seems to work fine but we configured a smtp
server with
starttls port 587 from a
functional mail server and we have a mail sending
problem after creating a conference in the
calendar.
The "email Management"
shows multiple errors as follows :
Last Error
javax.mail.MessagingException: Could not convert socket to
TLS;
nested exception is:
javax.net.ssl.
SSLHandshakeException:
sun.security.validator. ValidatorException: PKIX path
building failed:
sun.security.provider.
certpath. SunCertPathBuilderException: unable to find
valid certification path to requested
target
at com.sun.mail.smtp.
SMTPTransport.startTLS( SMTPTransport.java:2064)
at
com.sun.mail.smtp. SMTPTransport.protocolConnect(
SMTPTransport.java:724)
at
javax.mail.Service.connect( Service.java:388)
at javax.mail.Service.connect(
Service.java:246)
at
javax.mail.Service.connect( Service.java:195)
at javax.mail.Transport.send0(
Transport.java:254)
at
javax.mail.Transport.send( Transport.java:124)
at
org.apache.openmeetings.core. mail.MailHandler$2.run(
MailHandler.java:242)
at
java.util.concurrent.
ThreadPoolExecutor.runWorker( ThreadPoolExecutor.java:11
42)
at
java.util.concurrent.
ThreadPoolExecutor$Worker.run( ThreadPoolExecutor.java:6
17)
at
java.lang.Thread.run(Thread. java:748)
Caused by: javax.net.ssl. SSLHandshakeException:
sun.security.validator. ValidatorException:
PKIX path building failed:
sun.security.provider. certpath.
SunCertPathBuilderException: unable to find
valid certification path to requested target
at sun.security.ssl.Alerts.
getSSLException(Alerts.java: 192)
at sun.security.ssl. SSLSocketImpl.fatal(
SSLSocketImpl.java:1949)
at
sun.security.ssl.Handshaker. fatalSE(Handshaker.java:302)
at sun.security.ssl.Handshaker.
fatalSE(Handshaker.java:296)
at
sun.security.ssl. ClientHandshaker.
serverCertificate( ClientHandshaker.java:15
14)
at
sun.security.ssl. ClientHandshaker. processMessage(
ClientHandshaker.java:216)
at
sun.security.ssl.Handshaker. processLoop(Handshaker.java:
1026)
at
sun.security.ssl.Handshaker. process_record(Handshaker.
java:961)
at
sun.security.ssl. SSLSocketImpl.readRecord(
SSLSocketImpl.java:1062)
at
sun.security.ssl. SSLSocketImpl.
performInitialHandshake( SSLSocketImpl.java:13
75)
at
sun.security.ssl.
SSLSocketImpl.startHandshake( SSLSocketImpl.java:1403)
at
sun.security.ssl. SSLSocketImpl.startHandshake(
SSLSocketImpl.java:1387)
at
com.sun.mail.util. SocketFetcher.
configureSSLSocket( SocketFetcher.java:598)
at com.sun.mail.util. SocketFetcher.startTLS(
SocketFetcher.java:525)
at
com.sun.mail.smtp. SMTPTransport.startTLS(
SMTPTransport.java:2059)
... 10
more
Caused by: sun.security.validator.
ValidatorException: PKIX path building
failed: sun.security.provider. certpath.
SunCertPathBuilderException:
unable to find
valid certification path to requested target
at
sun.security.validator. PKIXValidator.doBuild(
PKIXValidator.java:387)
at
sun.security.validator.
PKIXValidator.engineValidate( PKIXValidator.java:292)
at sun.security.validator.
Validator.validate(Validator. java:260)
at
sun.security.ssl.
X509TrustManagerImpl.validate(
X509TrustManagerImpl.java:324
)
at
sun.security.ssl. X509TrustManagerImpl. checkTrusted(
X509TrustManagerImpl.java
:229)
at
sun.security.ssl. X509TrustManagerImpl. checkServerTrusted(
X509TrustManagerImp
l.java:124)
at
sun.security.ssl. ClientHandshaker. serverCertificate(
ClientHandshaker.java:14
96)
... 20 more
Caused by: sun.security.provider. certpath.
SunCertPathBuilderException:
unable to find
valid certification path to requested target
at
sun.security.provider. certpath.SunCertPathBuilder.
build(SunCertPathBuilder.j
ava:141)
at
sun.security.provider. certpath.SunCertPathBuilder.
engineBuild(SunCertPathBui
lder.java:126)
at
java.security.cert. CertPathBuilder.build(
CertPathBuilder.java:280)
at
sun.security.validator. PKIXValidator.doBuild(
PKIXValidator.java:382)
... 26
more
Could you help us on
configuring mail server with openmeetings ?
Thanks for your help.
Best Regards.
Maxime
---
This email has been checked for viruses
by AVG.
http://www.avg.com
--
WBR
Maxim aka solomax
Hello,
Thank you very
much for your reply and your useful help, importing the
certificate made it functional. It works fine now.
Best regards.
Maxime
