Fortify

Jump to bottom

James Perrin edited this page Nov 14, 2022 · 7 revisions

Error Solutions

Error 6368: No valid SSL certificate available for authentication.

Troubleshooting:
1. Attempted to update Micro Focus Fortify rulepacks and received an Error 6368: No valid SSL certificate available for authentication.
Cause of error:
1. SSL proxy certificate not trusted by the Java that fortifyclient uses.
Recommended solution steps (Windows):
1. Download and save SSL proxy certificate as .cer file.
  1. Using browser, visit https://update.fortify.com.
  2. Click on the SSL certificate padlock icon.
  3. Click Certificate.
  4. Click on the Certificate Path Tab.
  5. Chose the SSL proxy certificate, usually the 2nd certificate listed.
  6. Click View Certificate.
  7. Click on the Details Tab.
  8. Click the Copy to File... button.
  9. Click Next.
  10. Click on Base-64 encoded X.509 (.CER) radio button.
  11. Click Next.
  12. Click on the Browse... button.
    1. Navigate to desired location to save .CER file.
    2. Enter File name.
    3. Click Save.
  13. Click Next.
  14. Click Finish.
  15. Click OK.
  16. Click OK.
  17. Close the browser.
2. Add SSL proxy certificate to Fortify keystore.
  1. Open a Windows command prompt as Administrator.
  2. Change directory to Fortify Java bin.
    1. cd "%ProgramFiles%\Fortify\Fortify_SCA_and_Apps_X.X.X\jre\bin"
  3. Add SSL proxy certificate to keystore.
    1. keytool -import -trustcacerts -keystore ..\lib\security\cacerts -noprompt -storepass "changeit" -alias "Enterprise Proxy" -file "Folder\Path\To\Your\CertFile.cer"
Reference article:
1. Error downloading security content
Script:
1. Windows PowerShell script file, fortify_install_proxy_cert.ps1
2. Windows Bash script file, fortify_install_proxy_cert.sh