cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SSLPeerUnverifiedException: peer not authenticated

Go to solution
Former Member

on ‎08-01-2014 3:26 PM

0 Kudos

Hello, I'm trying to setup service at SMP which should connect to our NW Gateway using SSL. But when I'm trying to ping endpoint service I see error

"Backend system cannot be reached"

Error in the server.log -

2014 08 01 10:59:24#+0300#ERROR#com.sap.mobile.platform.server.online.admin.ping.PingService##anonymous#http-bio-8083-exec-4###Exception:::Root cause::: javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated|

I added NW cer file to smp_keystore.jks and sapjvm keystore, but it doesn't help. NW certificate is self signed, can it be the cause of problem?

P.S. version of SMP is 3.0.0

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Jitendra_Kansal
Product and Topic Expert
Product and Topic Expert
‎08-11-2014 4:43 PM
0 Kudos

Has your problem been resolved?

I encountered the same issue recently. This is how i was able to resolve it:

1. Set the JAVA Env Variables

     JAVA_HOME : C:\Program Files\Java\jdk1.8.0_05

     PATH: C:\Program Files\Java\jdk1.8.0_05\bin

2. Since it is HTTPS based backend destination,  import its certificate to SMP keystore file

    Run this below under  C:\SAP\MobilePlatform3\Server\configuration

keytool -import -v -alias sapgatewaycert -keystore smp_keystore.jks -storepass changeit -file c:\certificatelocation.cer

where changeit: smp keystore password (you must have set it during SMP server installation)

3. Press 'Y' for confirmation

4. Restart SMP server machine.

Rgrds,

JK

Show replies
Show replies

Answers (1)

Answers (1)

Jitendra_Kansal
Product and Topic Expert
Product and Topic Expert
‎08-01-2014 4:04 PM
0 Kudos 
I'm trying to setup service at SMP which should connect to our NW Gateway using SSL

Can you share how exactly you are setting up service at SMP? And where exactly you are getting error? If possible, share screenshots. Would be easy to understand.

Rgrds,

JK

Show replies
Show replies
Former Member
‎08-01-2014 4:23 PM
0 Kudos

Hi, here is screenshot of error when I'm trying to ping application -

And application itself -

Jitendra_Kansal
Product and Topic Expert
Product and Topic Expert
‎08-01-2014 4:58 PM
0 Kudos

Are you accessing backend OData url through a proxy server?

If yes, then you have to configure proxies in SMP 3.0 server. Refer this document

Note: Do not add "/" at the end of endpoint URL.

First, try only with one http/https backend odata url and see if it is hitting backend successfully.

Rgrds,

JK

Former Member
‎08-01-2014 5:39 PM
0 Kudos

No I don't use proxy, OData url is in local network.

I believe that problem is somwhere in tomcat security settings, because of this message in the logs -

10:59:24#+0300#ERROR#com.sap.mobile.platform.server.online.admin.ping.PingService##anonymous#http-bio-8083-exec-4###Exception:::Root cause::: javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated|

But, as I said, I already added certificate keystore and have no clue what can be wrong. Also I tried to create test application with google url, and it works fine.

Regards, Alexander

Ask a Question