cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

PI 7.11 receiver SOAP adapter using https

Former Member

on ‎06-20-2012 7:35 AM

0 Kudos

Hi,

System: PI version 711

Scenarie: We are trying to configure a Async SOAP Receiver Channel to be able to consume a webservice using HTTPS.

The webservice should not require  (in TEST environment) use of Certificate.

So we have an idoc -> SOAP scenarie using HTTPS protokoll.

Do we need to install / Configure anything in PI to be able to use HTTPS (No Certificate Required)

(We have read some posts, but no luck, remember version 711...)

ErrorCode:

SOAP: call failed: iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier

Regards

Martin

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (4)

Answers (4)

Former Member
‎06-21-2012 7:49 AM
0 Kudos

Hi Martin,

You may go thru this thread:-    http://scn.sap.com/thread/1396047

Thanks,

     Suji

Show replies
Show replies
baskar_gopalakrishnan2
Active Contributor
‎06-20-2012 4:41 PM
0 Kudos

>Do we need to install / Configure anything in PI to be able to use HTTPS (No Certificate Required)

(We have read some posts, but no luck, remember version 711...)

Depends on how the target webservice system handles the authentication. It could be anonymous ssl over http or with certificate.

The error shows that you might have not sequenced the certificate as root, intermediate and cert as chain.

Show replies
Show replies
Former Member
‎06-20-2012 5:02 PM
0 Kudos

Hi,

from the error we could find that, the SOAP request is expecting a successful hand shake with the server through the server certificate.

If you have a server certificate, please check if the chain of certificates are in the correct order.

Secondly, install all the certificates in the certificate keystore and provide the keystore details in the SOAP receiver channel.

Also, sometimes we have faced this issue when the Common Name is different in the certificates.

To get more details of the failure point, you can ask the BASIS team to install the XPI_Inspector and run.

nageshwar_reddy
Contributor
‎06-20-2012 4:02 PM
0 Kudos

Hi Maritn,

The error indicates that the certificate being used is not trusted. This usually happens when you do not have signing authority certificate installed on the client. So, when the server presents its certificate, client rejects the certificate.  Please check with the Basis/Security team to see if you have the right certificates installed...

Show replies
Show replies
iaki_vila
Active Contributor
‎06-20-2012 7:48 AM
0 Kudos

Hi Martin,

Have you checked this thread http://scn.sap.com/thread/1899314?, it could help you.

Regards.

Show replies
Show replies
Ask a Question