on 03-10-2011 4:37 PM
Hi All,
I have a proxy to HTTPs scenario. To connect to HTTPs url I created HTTP Destination in sm59.
I downloaded the certificate from the vendor url and uploaded in STRUST.
I even restartrd ICM through SMICM. I did connection test in SM 59 and got 200 as response.
But when i test end to end the files are failing at the vendor side( ie HTTPs URL) with error Error: SSL handshake failed: X509CertChainIncompleteErr
Can some one please help on this issuse.
Thanks,
Siva
If you open the certificate, you will see the chain of the certificate, Import all the certificate in the chain.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi there,
The problem may be that the certificate chain is not in correct order. Basically the server certificate chain should be in order
Own->Intermedite->Root. To explain in detail, if your server certificate is A which is issued by an intermediate CA B and then B's certificate is issued by the C which is the root CA (having a self signed certificate).
Then your certificate chain contains 3 elements A->B->C. So you need to have the right order of certificate in the chain. If the order is B first followed by A followed by C, then the IAIK library used by PI cannot verify the server as trusted.
Generate the certificate in the right order and then import this certificate in the TrustedCA keystore view and try again.
Regards,
Caio Cagnani
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
10 | |
10 | |
9 | |
7 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.