on 03-22-2012 8:23 AM
Hi gurus,
i am getting following error when i call a https soap webservice;
"
iaik.security.ssl.SSLCertificateException:
Peer certificate rejected by ChainVerifier
"
i am getting a .cer file from customer. Where should i install and how should i use this in receiver soap adapter configuration?
any help is appreciated and is urgenly needed,
Regards,
Peter
pls deploy the .cer file in Visual Admin in case of XI3.0 or PI7.0
pls deploy the .cer file in NWA - Java systems - trusted systems - keystore in case of PI 7.1 or higher.
in receiver SOAP comm channel, in transport protocol use HTTPS.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Rajeev & Mark
My partner Certificate (partner.crt) is verified from VeriSign. Therefore i have been installed in
Configuration > Certificates and Keys > Key Storage > TrustedCAs >Import Entry > X.509 Certificate > Partner.crt
I have also created a view ("Partner") and installed there again.
Rajeev wrote;
in receiver SOAP comm channel, in transport protocol use HTTPS.
But I have only HTTP protocoll for selection.
What can I do, to get this working?
Regards,
Peter
Hi Mark,
I typed the entries manually but, i am getting exactly the same error, again.
Error While Sending Message:
Additional error text from response:
com.sap.engine.interfaces.messaging.api.exception.MessagingException:
iaik.security.ssl.SSLCertificateException: Peer certificate rejected by
ChainVerifier
Hello,
You need to install all of the chain in your certificate e.g
In the screenshot above, I download the certificate from hotmail. There is a chain composed of 4 certificates, now, if you only install the certificate mail.live.com, it will not be verified by GTE CyberTrust Global Root and Microsoft Interfnet Authority. Hence, all 4 are needed to be installed in NWA (at least for your view).
Hope this helps,
Mark
Hi Peter,
In order to complete the information by Rajeev and Mark you could get more information in SAP Help library. If you are using SAP PI 7.1 you could read that link http://help.sap.com/saphelp_nwpi71/helpdata/de/32/1c1041a0f6f16fe10000000a1550b0/frameset.htm
Regards
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Rohan,
You must restart the soap channel after installing certificates in NWA
Best Regards,
Praveen Gujjeti
Hello,
The path for nwa would be:
Once you have logged in, go to Configuration Management -> Security -> Certificates and Keys. You may opt to create a view first and then install the certificates there.
Regards,
Mark
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
93 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.