Shinyproxy ldaps with self-signed certificate


Is there a way to use shinyproxy with a self-signed certificate for ldaps? Or to disable certificate-check with ldaps?

I am seeing:

2018-01-10 13:14:00.279 ERROR 24 --- [XNIO-2 task-1] w.a.UsernamePasswordAuthenticationFilter :
An internal error occurred while trying to authenticate the user. simple bind failed:; nested exception is javax.naming.CommunicationException: simple bind failed: [Root exception is
PKIX path building failed: unable to find valid certification path to requested target]


Hi @Edi_Sz,

To have ShinyProxy trust the self-signed certificate, it should be added into the trust store.
There are two ways to do this:

  1. Add it into the default trust store of the JRE running ShinyProxy. This is usually JRE_HOME/lib/security/cacerts. See for more info.

  2. Add it into a custom trust store and use that when launching ShinyProxy (using args and

Keycloak SSL Redirect Loop