cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

A2200220: Peer Certificate expired

Go to solution
manna_das
Contributor

on ‎02-08-2015 4:32 PM

0 Kudos

Hello All,

The end user getting the error as mentioned above. does anybody know the exact problem. Which certificate got expired here? I have checked every certificate, none is expired.

Kind Regards

MAD

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

manna_das
Contributor
‎02-09-2015 6:51 AM
0 Kudos

We have very strange situation here, on the first attempt user is denied to enter into SAP system with SSO and in second attempt user is allowed to enter via SSO.

This issue is occurring in other sap systems too, we updated secure login library from version 1.0 to 2.0 so now the error is gone.

Don't know what is happening here.

Kind Regards

MAD

Show replies
Show replies
former_member200373
Participant
‎02-09-2015 8:21 AM
0 Kudos

Hello Manna,

A2200200 means that the server´s SNC certificate is expired from the client´s perspective, which can be either not valid yet or not valid anymore.

In your case, either the client side clock is out of sync, or your old Secure Login Library 1.0 was not able to successfully verify a certificate chain with PKIX trust model (i.e. correct calculation of overlapping validities of server and issuer certificate).

There have been several fixes in CommonCryptoLib or Secure Login Library 2.0 that are not part of the outdated Secure Login Library 1.0. So moving to the latest patch version is a good approach.

It´s even recommended to move from a stand-alone SLL to CCL.

-- Stephan

manna_das
Contributor
‎02-09-2015 9:12 AM
0 Kudos

Hello Stephan,

Thanks for clearing the doubt. We will update the SLL to rest of the servers too.

Kind Regards

Manna

Answers (0)

Ask a Question