Skip to Content
avatar image
Former Member

Error in FTPS receiver Adapter "Peer sent alert: Alert Fatal: handshake failure"

Dear All,

I have a scenario(without ESR configuration) where I have to transfer vendor payment text file to Bank FTPS server using file adapter(FTPS) using SSL certificates provided by the the bank.

I have created a sender file adapter(without FTPS and certificates) to pickup the file from source directory and completed the other required configuration.

Also I have created the receiver communication channel with FTPS and completed all the required configuration.

Please see the below screen shot  for the sender and receiver communication channel.

  1. Sender Communication channel config.

2. FTPS Receiver Communication Channel configuration.


for SSL certs I have created the CSR from the Portecle  tool recommended by bank, and bank has given signed certificates and other certificates chain after sending them the CSR, which I have imported in the keystore service_ssl.


However, I am getting the below exception at receiver channel monitoring level. I have tried by putting the certs and private keys in TrustedCAs as well, but I am facing the same exception.


"Exception caught by adapter framework: Error when getting an FTP connection from connection pool: com.sap.aii.af.lib.util.concurrent.ResourcePoolException: Unable to create new pooled resource: iaik.security.ssl.SSLException: Peer sent alert: Alert Fatal: handshake failure"


I have gone thorough many blogs and thread on SCN for the same error but nothing seems to be working in my case.


Please suggest.

 


Thanks,

Farhan

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • Best Answer
    avatar image
    Former Member
    Jan 13, 2015 at 05:30 AM

    Hi Farhan,

    Could you please try regenerating the certificates and import them again.

    http://scn.sap.com/thread/3368187

    Thanks and Regards,

    Naveen.

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Dear All,

      This issue has been resolved by changing the host name instead of IP , because in certificate host name has been provided and its been validating based on host name in certificate.

      Thanks,

      Farhan

  • Jan 08, 2015 at 11:44 AM

    Hi Farhan,

    You should check first that the iaik libraries are correctly installed. In this thread SOAP Adaper SSLException: Peer sent alert: Aler... | SCN, dinesh veguru points a SOAP adapter note, but the question is about the SSL configuration and the iaik libraries consistence. Give it a chance.


    Regards.


    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Former Member

      Hello Farhan,

      this might also be an interruption made by the server. Have you checked some logs? In NWA select Troubleshooting --> Logs and Traces --> Security Troubleshooting Wizard, then try SSL or Authentication while you execute the transaction. In case you don't find anything there, use XPI_Inspector.

      It is possible that the server rejected your client certificate. In this case you can search for a long time on your PI, since the error was made on server side.

      Better check that first, might save you some time.

      Regards,

      Jörg