Hi Ganga, I believe the problem is that the x.509 server cert your keycloak instance uses to secure SSL/HTTPS connections is not trusted, i.e. not signed by one of the trusted CAs that exist in the Java trusted cert key store. You can either disable the PKIX cert path validation or add your x.509 server cert to the java keystore. ________________________________________ From: keycloak-user-bounces(a)lists.jboss.org [keycloak-user-bounces(a)lists.jboss.org] on behalf of Ganga Lakshmanasamy [lganga14(a)gmail.com] Sent: Saturday, March 11, 2017 11:23 AM To: keycloak-user Subject: [keycloak-user] Not able to invoke keycloak admin REST apis from wildfly container Hi, I am not able to invoke keycloak admin REST apis from our wildfly container. Both keycloak and wildfly are ssl enabled and our app is using keycloak authentication. We are getting SSLHandshakeFailure error while trying to invoke keycloak's admin rest api to disable user. We are just making a client request. Below is the error, "javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target" Regards, Ganga Lakshmanasamy _______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user