got java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty when using cas [duplicate]

This question already has answers here: Error - trustAnchors parameter must be non-empty (46 answers) Closed 8 years ago.

we get the following exception in our application under tomcat which is using cas.

java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty

when I google for it I found some guess and solutions but no one can help me .

here is a part of our tomcat server.xml file:

<Connector SSLEnabled="true" clientAuth="false" keystoreFile="conf/.keystore" m开发者_StackOverflow社区axThreads="150" port="8443" protocol="HTTP/1.1" scheme="https" secure="true" sslProtocol="TLS"/>

we point to our generated keystore.

---

This bizarre error message usually means that your specified truststore was not found where you said it was.