How do I fix SSL TLS error?

I am using the following code to connect to a remote web service.

String url = "";. URL objUrl = new URL(url);. URLConnection con = objUrl.openConnection(); BufferedReader in = new BufferedReader(new InputStreamReader(con.getInputStream())); String inputLine;. While ((inputLine = in.readLine()) != null) in.close(); When I try to run this code, it throws an exception. Javax.net.ssl.SSLHandshakeException:
Sun.security.validator.ValidatorException: PKIX path building failed:
Sun.provider.certpath.SunCertPathBuilderException:
Unable to find valid certification path to requested target. Your certificate is self-signed. It has no way to know that it is valid, and thus it cannot validate it.

Fix your certificate (make it a trusted certificate) by signing it using a trusted certificate authority. Make your URL start with. Use an SSL library that supports self-signed certificates, like the Java Security API.

What is the default TLS version for OpenVPN?

As explained in our documentation, in its default configuration OpenVPN supports both TLS versions 1.

0 and 1.2, but also the more secure TLS version 1.3.

If you have used the "auth" config option with the "-tls-tlsv1", OpenVPN will not use the more secure TLS version 1.3, and use the older version 1.0 or 1.

The "auth" config option with the "-tls-tlsv1" parameter is used to have both old and more secure TLS version for OpenVPN. This option is useful if you don't want OpenVPN to use the newer version 1.3 of TLS but still want to allow older versions.

But if you already have a VPN server configured with the default OpenVPN config file that supports TLS 1.3, then what does this "-tls-tlsv1" option do exactly? It will tell OpenVPN to use only TLS version 1. We'll take a look at this in more detail below. I'm using OpenVPN with "auth" option: Which TLS version will be used? There is a difference between OpenVPN with or without the "-tls-tlsv1" option. With "auth" option, OpenVPN will only use TLS version 1. Without "auth" option, OpenVPN will try to use the latest TLS version (1.3), but will fail if it is not available.

It will fall back to the previous version 1. If you use the "auth" option and your server supports TLS version 1.3 (which most now do), then you don't need to use the "-tls-tlsv1" option.

Note: This means you will lose some security enhancements that OpenVPN provides in TLS 1. For example: Using TLS 1.3 mutual authentication will require client authentication, which is possible only in TLS 1.2 or later.

OpenVPN can't determine if a client has authenticated correctly if it supports TLS version 1.3 or earlier.

Which TLS version will be used for TLS client authentication? By default, TLS version 1.3 is used for TLS client authentication.