java.net.UnknownHostException ocsp.verisign.com exceptions are generated by IBM Case Foundation applets
java.net.UnknownHostException ocsp.verisign.com exceptions are generated when opening applets such as the Process Designer, Process Configuration Console and Process Administrator and there is no Internet access
In the java console trace, an exception similar to the following is generated
security: Revocation Status Unknown
com.sun.deploy.security.RevocationChecker$StatusUnknownException: java.net.UnknownHostException: ocsp.verisign.com
at com.sun.deploy.security.RevocationChecker.checkOCSP(Unknown Source)
at com.sun.deploy.security.RevocationChecker.check(Unknown Source)
at com.sun.deploy.security.TrustDecider.checkRevocationStatus(Unknown Source)
at com.sun.deploy.security.TrustDecider.getValidationState(Unknown Source)
at com.sun.deploy.security.TrustDecider.validateChain(Unknown Source)
In the JRE 1.7 runtime environment, there is a new security feature called certificate revocation check. This requires access to the ocsp.verisign.com server on the Internet.
CPE 5.2, JRE 1.7.0_40
Diagnosing the problem
Enable java console tracing in the Java Control Panel. In Windows, the Java Control Panel can be accessed by clicking on the Java icon in the Windows Control Panel. For example:
Resolving the problem
Disable certificate revocation checking on the Advanced tab in the Java Control Panel.
Note: On the Advanced tab, make sure that Mixed code security verification is also disabled as shown on the screenshot above. That is another recent java run-time security feature that can cause unexpected behavior in IBM Case Foundation software.
More support for:
Software version: 5.2
Operating system(s): AIX, Linux, Windows
Software edition: All Editions
Reference #: 1652006
Modified date: 2013-10-04