IBM WebSphere Application Server 7.0/8.5.5证书过期问题处理

证书过期错误日志：

[3/14/16 7:22:20:332 PDT] 0000007d WSX509TrustMa E   CWPKI0312E: The certificate with subject DN CN=MXSYSTEMS, OU=ctgNodeCell01, OU=ctgNode01, O=IBM, C=US has an end date Mon Jan 11 11:17:18 PST 2016 which is no longer valid.
[3/14/16 7:22:20:336 PDT] 0000007d ORBRas        E com.ibm.ws.security.orbssl.WSSSLClientSocketFactoryImpl createSSLSocket Thread-135 JSSL0080E: javax.net.ssl.SSLHandshakeException - The client and server could not negotiate the desired level of security.  Reason: com.ibm.jsse2.util.g: PKIX path validation failed: java.security.cert.CertPathValidatorException: The certificate expired at Mon Jan 11 11:17:18 PST 2016; internal cause is:
    java.security.cert.CertificateExpiredException: NotAfter: Mon Jan 11 11:17:18 PST 2016 javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.g: PKIX path validation failed: java.security.cert.CertPathValidatorException: The certificate expired at Mon Jan 11 11:17:18 PST 2016; internal cause is:
    java.security.cert.CertificateExpiredException: NotAfter: Mon Jan 11 11:17:18 PST 2016

...

Caused by: com.ibm.jsse2.util.g: PKIX path validation failed: java.security.cert.CertPathValidatorException: The certificate expired at Mon Jan 11 11:17:18 PST 2016; internal cause is:
    java.security.cert.CertificateExpiredException: NotAfter: Mon Jan 11 11:17:18 PST 2016

...

Caused by: java.security.cert.CertPathValidatorException: The certificate expired at Mon Jan 11 11:17:18 PST 2016; internal cause is:
    java.security.cert.CertificateExpiredException: NotAfter: Mon Jan 11 11:17:18 PST 2016

...

Caused by: java.security.cert.CertificateExpiredException: NotAfter: Mon Jan 11 11:17:18 PST 2016

处理办法

在 SSL 配置中更新证书

1. 点击安全 > SSL 证书和密钥管理。
2. 在“相关项目”下，单击密钥库和证书。
3. 点击适当的<密钥库名称>您想要添加新证书到其中。

   笔记：只能更新自签名证书和使用来自根密钥库的根证书签名的链式证书。

4. 在其他属性下，单击个人证书列出个人证书。
5. 从列表中选择个人证书。
6. 点击更新按钮。
7. 点击申请然后好的。
8.