2017 Expiring Java certificates

Document ID : KB000088115
Last Modified Date : 14/04/2018
Show Technical Document Details
Error Message :

In June 2017 Applications Manager's Java Client certificate has expired. If using a release of Java 7 update 51 or later, Java will not allow Applications Manager to launch with an expired certificate. Applications Manager 8.0.17 HF1, 9.0.1 HF, 9.1.3, and 9.2.0 will all contain the updated Java Certificate. Additional information on which versions are affected can be found at our community post here.

Expired certificates will run into the error "Application Blocked by Java Security" when launching the Java Web Client.



OS Version: N/A
Cause type:
By design
Root Cause: Java's client certifications last two years.
Update to a fix version listed below or a newer version if available.

Applications Manager 8.0.17 HF1, 9.0.1 HF, 9.1.3, and 9.2.0 will all contain the updated Java Certificates. 
This new certificate will expire in 2019. Applications Manager (AM) v8 will be out of maintenance and support before then on 2018-03-31. There will not be a new Java certificate update after this date for AM v8.

Fix Status: Released

Fix Version(s):
Applications Manager 9.2.0 - Available
Applications Manager 9.1.3 - Available
Applications Manager 9.0.1 HF1 - Available
Applications Manager 8.0.17 HF1 - Available
Additional Information:
Workaround :
Add the Java Web Client's Apache URL to Java's exception site list by opening Java control panel's security tab.


Edit Site List, choose Add and enter in the Java Web Client's Apache URL. The Apache URL for the Java Web Client is URL to Launch the Web Client but excluding all characters after the Apache Port. In this example, the client URL is "", so the Apache URL is "". Select Continue to accept the risk.


Confirm that the URL is listed in the Exception Site List as seen below.


Select Apply/OK.