on 06-18-2015 8:02 PM
Hi Experts,
I am trying to connect to external partner using FTPS connection. Partner has provided us the server name, port (21), username and password. They have also provide PGP keys.
I am getting below error.
"Transmitting the message to endpoint <local> using connection File_http://sap.com/xi/XI/System failed, due to: com.sap.engine.interfaces.messaging.api.exception.MessagingException: Error when getting an FTP connection from connection pool: com.sap.aii.af.lib.util.concurrent.ResourcePoolException: Unable to create new pooled resource: iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier"
I have looked at the SDN and all the blogs and discussions are for the trusted CA. I want to know if i can make this connection without Trusted CA with only username/password.
My current config parameters are, i have tried checking Use X.509 certificate ....
Thanks,
Nishant
Hello Nishant,
Were you able to fix the issue?
I have uploaded the certificate from XPI zip file to Trusted CAs. Still getting the error.
How did you fix the issue?
Regards
Ragu
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
>>>I have looked at the SDN and all the blogs and discussions are for the trusted CA. I want to know if i can make this connection without Trusted CA with only username/password.
It's not an option and this is something depends on how your FTP(s) account was setup.
You can check with your partner and get the certificates.
In addition, if you have xpi inspector installed, then enable the trace for this channel. This utility should automatically download the cerificates which can be uploaded into NWA keystore.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
>>>is the Trusted CA mandatory for FTPES?
I don't think so but this is not something that we(PI) decide, As i said you should check with your partner.
>>>XPI will automatically download certificate from partners system?
It should. At least that is how i fixed similar issue in the past.
Download the XPI trace zip file and you should be able to see a separate folder with "certificates" in it.
User | Count |
---|---|
86 | |
10 | |
9 | |
9 | |
9 | |
6 | |
6 | |
5 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.