Whenever Java updates itself on your PC, you may get this message:
"Revocation information for the security certificate for this site is not available. Do you want to proceed?"
The answer comes from https://community.oracle.com/thread/2362172?start=60&tstart=0, but is buried in message 65 on page 5, so here is the answer:
For those of you still getting the error message: "Revocation information for the security certificate for this site is not available. Do you want to proceed?" whenever the java updater runs, I managed to get it fixed on my system. Obviously I didn't want to turn off revocation verification in my browser or in the Java settings (This is a bad idea, all the people saying to do this all around the web are morons). I tried installing the javadl-esd.secure.oracle.com certificate, but it still wasn't working. The revocation information was all there, but when I viewed the certificate, IE/Windows was still saying it did not have enough information to verify the certificate.
However, if you simply open IE, put this URL into the location bar: http://crt.usertrust.com/USERTrustLegacySecureServerCA.crt and install the certificate (Let it pick the store automatically, it will properly install it as an intermediate certificate, which it is), Windows is able to verify the javadl-esd.secure.oracle.com certificate as it now has its issuer's certificate (USERTrust Legacy Secure Server CA) and can link the certificate all the way back to the Ensign root CA.
The updater will no longer nag you every time it runs.
"Revocation information for the security certificate for this site is not available. Do you want to proceed?"
The answer comes from https://community.oracle.com/thread/2362172?start=60&tstart=0, but is buried in message 65 on page 5, so here is the answer:
For those of you still getting the error message: "Revocation information for the security certificate for this site is not available. Do you want to proceed?" whenever the java updater runs, I managed to get it fixed on my system. Obviously I didn't want to turn off revocation verification in my browser or in the Java settings (This is a bad idea, all the people saying to do this all around the web are morons). I tried installing the javadl-esd.secure.oracle.com certificate, but it still wasn't working. The revocation information was all there, but when I viewed the certificate, IE/Windows was still saying it did not have enough information to verify the certificate.
However, if you simply open IE, put this URL into the location bar: http://crt.usertrust.com/USERTrustLegacySecureServerCA.crt and install the certificate (Let it pick the store automatically, it will properly install it as an intermediate certificate, which it is), Windows is able to verify the javadl-esd.secure.oracle.com certificate as it now has its issuer's certificate (USERTrust Legacy Secure Server CA) and can link the certificate all the way back to the Ensign root CA.
The updater will no longer nag you every time it runs.
No comments:
Post a Comment