cancel
Showing results for 
Search instead for 
Did you mean: 

iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier

0 Kudos

Hi Gurus,

   We are getting below error while calling https soap webservice.

iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier

Here is the scenario and steps implemented so far to overcome this issue.

Scenario:

From SAP ISU we are triggering some operations and its heading to SAP PI and PI is calling to webservice (Proxy(SOAP Receiver) ) to MDM server.

Implemented Steps:

 

    1. MDM server certificate configured in NWA-> Keystore with Keys.

    2. Telnet is working positive from PI to MDM server and vice versa

    3. We are able to see the metadata(WSDL) from internet explorer on MDM server.

    4. Message is triggered from SOAP UI on MDM server to SAP results 500 internal error.

    5. From MDM side we have good certificate

Based on above tests we are predicted network is working good ,however we are unable to find root cause for this issue.

Issue:

  While triggering an operation from ISU we are receiving data to PI and PI to MDM its failing and the error generating during this is

  "iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier"

After we tried with HTTP on same port and we are getting below error.

Transmitting the message to endpoint <local> using connection SOAP_http://sap.com/xi/XI/System failed, due to: com.sap.engine.interfaces.messaging.api.exception.MessagingException: java.net.SocketException: Connection reset

We looked into a couple of threads related to this issue and tried with those options, however we still facing the same. Any suggestions would be appreciated as we are facing this from longer time.

Thanks,

Aman

Accepted Solutions (0)

Answers (3)

Answers (3)

0 Kudos

We did some changes. We re-route to http from https for initial connectivity as with https we are encountering certificate issue.

flow is :

SAP(Hosted network(our company))--> Client N/W->NAT --> MDM system.

our SAP server is not directly connecting to MDM server . It is connecting to NAT and NAT is connecting to MDM server.

  Request: SAP--->MDM

PI execution:

SAP ISU is triggering the data to PI and PI is Passing to MDM . Initially it was success on first try there after on second retries its failing. This is one observation.

some times message got failed in PI and it went through to MDM  after 3 retries . Connection reset  error is the error which is popping up in PI logs.

The same success message got triggered next time and it is failing.

Is some network is closing in between for certain time or any is not hitting to our minds. Where to start trouble shoot.

SAP is on Unix server . We did wget and status shows its connected to nat also below error

HTTP request sent, awaiting response... Read error (Connection reset by peer) in headers.

  Retrying.


Dumb question.


  In my scenario, where do we install SOAPUI on SAP server to test . As it sits on Unix.


Response: MDM---> SAP

Response is successful all the time.

Any suggestions would be highly appreciate.

Thanks,

Aman

former_member182412
Active Contributor
0 Kudos

Hi Aman,

Check this blog.

Regards,

Praveen.

former_member186851
Active Contributor
0 Kudos

Hello Aman,

Check for any proxy settings and also check using XPI inspector.