This error occurs when you are trying to establish a connection over SSL to a remote site.

Certificates signed by root or intermediate authority ensure that the website the user is visiting is legitimate. 

This issue may occur when a self-signed certificate(s) is issued. Another less common reason could be if the browser has not been updated recently. It should be ensured that the certificate of the webpage the user is visiting is present in the #key# TrustStores: Contains all the trusted certificate authorities and servers #key#. 



# How to resolve

* Check to see if you are using the latest version of the web browser.
* You can add the author of the self-signed certificate to the TrustStores on the web browser. The certificate can be viewed by using either the `openssl` command or the web browser. The author can then be added to the TrustStores with:
> `keytool -importkeystore -srckeystore $(readlink -f /usr/bin/java | sed "s:bin/java::")lib/security/cacerts -destkeystore /opt/mapr/conf/ssl_truststore`
* You can add the certificate to the JAVA_HOME/jre/lib/security/cacerts directory using: 

Generate SSL certificate using:
>`openssl s_client -connect educative.io:90 | openssl x509 -out educative.cert`
Import to TrustedStores using:
>`keytool -import -alias educative -file educative.cert -keystore  /opt/mapr/conf/ssl_truststore`

You may have to repeat for all client nodes.

# How to resolve

* Check to see if you are using the latest version of the web browser.
* You can add the author of the self-signed certificate to the TrustStores on the web browser. The certificate can be viewed by using either the `openssl` command or the web browser. The author can then be added to the TrustStores with:
> `keytool -importkeystore -srckeystore ＄(readlink -f /usr/bin/java | sed "s:bin/java::")lib/security/cacerts -destkeystore /opt/mapr/conf/ssl_truststore`
* You can add the certificate to the JAVA_HOME/jre/lib/security/cacerts directory using: 

Generate SSL certificate using:
>`openssl s_client -connect educative.io:90 | openssl x509 -out educative.cert`
Import to TrustedStores using:
>`keytool -import -alias educative -file educative.cert -keystore  /opt/mapr/conf/ssl_truststore`

You may have to repeat for all client nodes.

Error: unable to find valid certification path to the target 

This error occurs when you are trying to establish a connection over SSL to a remote site. Certificates signed by root or intermediate authority ensure that the website the user is visiting is legitimate. This issue may occur when a self-signed certificate(s) is issued. Another less common reason could be if the browser has not been updated recently. It should be ensured that the certificate of the webpage the user is visiting is present in the TrustStoresContains all the trusted certificate authorities and servers. 