# Resolving Errors ## Resolving "PKIX path building failed" and "unable to find valid certification path to requested target" This error is most commonly experienced on Windows operating systems as a result of the default keystore installed with Java. ### Export SSL certificate from browser Open your browser and navigate to or your local Hybrid threatrix deployment server. Follow the instructions below to export the SSL certificate from your browser: #### **chrome** Click on site icon left to address in address bar, select "Certificate" -> "Details" -> "Export" and save in format "Der-encoded binary, single certificate, save as app.threatrix.io.crt". #### **firefox** Click on HTTPS certificate chain (the lock icon right next to URL address). Click "more info" > "security" > "show certificate" > "details" > "export..". Saver as app.threatrix.io.crt #### edge Click on site icon left to address in address bar, select "Connect is secure" -> "Show Certificate icon(top right)" -> "Details -> "Export" and save as app.threatrix.io.crt. ### Import SSL certificate into Java keystore as trusted certificate Locate your Java cacerts file, which is installed with Java, typically under $JAVA\_HOME\lib\security\cacerts If a password is required, the default password for java keystores is "chnageit". use Java keytool to import it into your Java keystore ``` keytool -import -trustcacerts -alias threatrix -file app.threatrix.io.crt -keystore cacerts ```