09-10-2009 7:43 PM
Hi
We are getting an exception (in the J2EE logs) when an external party calls our SOAP webservice with WS-Security. We are using their public certificate to verify their signature (self signed certificate). Their SOAP Security header looks correct - below is the error in the J2EE logs.
VerifyException. Key: 0200
[EXCEPTION]
com.sap.security.core.policy.exceptions.VerifyException: [_policy0200] Error while valdiating the digital signature. The error was java.lang.NullPointerException null.
at com.sap.security.core.securitypolicy.assertions.IntegrityAssertion.verify(IntegrityAssertion.java:376)
at com.sap.security.core.policy.expressions.AllExpression.verify(AllExpression.java:149)
at com.sap.security.core.policy.WSPolicy.verify(WSPolicy.java:43)
Any help would be greatly appreciated.
09-19-2009 9:45 PM
What do you mean by "external party" and "self signed certificate" in this context?
A 3rd party vendor or customer is giving you their server's "self signed" certificate to use publicly?
Apart from this being more prone to admin errors than server certificates already are, I hope that they trust you...
Cheers,
Julius
09-19-2009 5:46 PM
Hi,
The public key does not seem to be matching for verification. Re import the public Key in Key Storage.
Was it working before ??
Check the validity also.
Cheers.,
Raghu
09-19-2009 9:45 PM
What do you mean by "external party" and "self signed certificate" in this context?
A 3rd party vendor or customer is giving you their server's "self signed" certificate to use publicly?
Apart from this being more prone to admin errors than server certificates already are, I hope that they trust you...
Cheers,
Julius