on 06-20-2012 7:35 AM
Hi,
System: PI version 711
Scenarie: We are trying to configure a Async SOAP Receiver Channel to be able to consume a webservice using HTTPS.
The webservice should not require (in TEST environment) use of Certificate.
So we have an idoc -> SOAP scenarie using HTTPS protokoll.
Do we need to install / Configure anything in PI to be able to use HTTPS (No Certificate Required)
(We have read some posts, but no luck, remember version 711...)
ErrorCode:
SOAP: call failed: iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier
Regards
Martin
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
>Do we need to install / Configure anything in PI to be able to use HTTPS (No Certificate Required)
(We have read some posts, but no luck, remember version 711...)
Depends on how the target webservice system handles the authentication. It could be anonymous ssl over http or with certificate.
The error shows that you might have not sequenced the certificate as root, intermediate and cert as chain.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
from the error we could find that, the SOAP request is expecting a successful hand shake with the server through the server certificate.
If you have a server certificate, please check if the chain of certificates are in the correct order.
Secondly, install all the certificates in the certificate keystore and provide the keystore details in the SOAP receiver channel.
Also, sometimes we have faced this issue when the Common Name is different in the certificates.
To get more details of the failure point, you can ask the BASIS team to install the XPI_Inspector and run.
Hi Maritn,
The error indicates that the certificate being used is not trusted. This usually happens when you do not have signing authority certificate installed on the client. So, when the server presents its certificate, client rejects the certificate. Please check with the Basis/Security team to see if you have the right certificates installed...
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Martin,
Have you checked this thread http://scn.sap.com/thread/1899314?, it could help you.
Regards.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
10 | |
10 | |
9 | |
7 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.