Error viewing secure URL (https://) using HTML gadget

  • 10086735
  • NOVL92270
  • 04-Sep-2003
  • 04-Sep-2003

Archived Content: This information is no longer maintained and is provided 'as is' for your convenience.


Novell NetWare 6 Support Pack 3

Novell Portal Services 1.5

Novell exteNd Director 4.1 Standard Edition


Error viewing secure URL (https://) using HTML gadget

Error accessing secure pages (via HTTPS) using HTML gadget

Error: "URL is not valid! This could mean the url does not exist or that the URL contains frames. If the URL exists try accessing this resource with the IFrame gadget"


The problem is caused because the HTML gadget is not able to automatically accept the certificate that is passed by the web server (when the HTML gadget attempts to view the secure page)


To fix the problem with the "URL is not valid!" error, you need to import your web server's Trusted Root Certificate into your cacerts or jssecacerts trust store file.
1. Export the server certificate for your NPS/ExteNd Director server from a web browser that you have already used to login to that server via HTTPS (i.e. the browser has already accepted the certificate).  In IE, click on Tools>Internet Options>Content>Certificates>Intermediate Certificate Authorities, then highlight the cert for your server and click "Export".  Choose *.DER as the format and then save the file to your C:\ drive (i.e. C:\TrustedRootCert.der)

2.  Find the CACERTS file on your Director server and make a backup copy.  It is typically located in the \JAVA\LIB\SECURITY directory

3.  Next, find the KEYTOOL.EXE file on the workstation.  You must use KEYTOOL.EXE that comes with JVM 1.3 or newer, keytool that comes with JVM 1.2.2 or older does not work. Keytool is located in the \BIN\ folder relative to your Java home folder on the workstation.  For example, C:\JDK1.3.1_02\BIN\KEYTOOL.EXE.  You can download the latest JVM at

4.  Next, from a DOS prompt change to the directory where the KEYTOOL.EXE file is located (i.e. C:\JDK1.3.1_02\BIN or C:\j2sdk1.4.0_01\BIN).  From this directory run the following command:

keytool -import -alias <aliasName> -file <C:\TrustedRootCert.der> -keystore <H:\java\lib\security\cacerts> -storepass changeit

Replace <aliasName> with a unique name for this certificate.  Replace <TrustedRootCert.der> with the full  path to the file you exported in step 1, (i.e. C:\TrustedRootCert.der) and make sure that the full path for cacerts is specified (i.e. H:\java\lib\security\cacerts)

**Note:** "changeit" is the default keystore password.  Use the appropriate keystore password if it has been changed.

5. Exit and restart Apache Tomcat33 and/or Tomcat4.

Once you  import that certificate, HTML gadgets should be able to access secure pages without any problems.

Feedback service temporarily unavailable. For content questions or problems, please contact Support.