Trusting BankID CA

As of version 3.0 a stricter validation of HTTPS traffic is used. This resulting in not trusting the CA of BankID SSL Root CA v1 which is the issuing CA when using Swedish BankID.  This can be mitigated by replacing the truststore in this article.

By replacing the default cacerts file with the attached file trust with both BankID test and prod server will be established.


Replace the attached cacerts located under <install_root>/jre/lib/security/

After replacing the file restart server.