on 05-25-2016 2:03 PM
Hey All,
We are on PI 7.4 and have installed REST adapter SP09 (will upgrade to SP10 soon) and need to use Receiver REST Adapter with Client certificate. For this, I have imported the Private Key in PI NWA (TicketKeyStore) and the external vendor (target system) has imported the public cert for this key. I have also specified the Key in Receiver channel configuration.
When I execute my process it gives me below error:
PKIX Path building Failed. Unable to find valid certification path to requested receiver.
Has anyone used Client certificate with REST? Please advise how this can be resolved.
Thanks,
Hi Saif,
there can be a lot of reasons for this error message. This is a very generic error, and now it would be hard to tell what is causing this exactly. You can use the Security troubleshooting wizard (Note: 1332726 ) to collect the traces about the SSL handshake.
But it is for sure that the REST adapter is using JDK SSL implementation. So the following note might help which contains fixes for SSL connections:
#1981011 - SAP JVM 6.1 Patch Collection 58 (build 6.1.063)
But you can also switch to IAIK SSL implementation for REST adapter communication with this note:
#2229837 - REST receiver adapter is using SSL implementation provided by JDK
Best Regards,
Viktor
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
In addition to Private Key and its corresponding certs, I had to import Symantec and VeriSign certs in TrustedCA. This fixed the issue.
Thanks,
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.