Skip to Content
0
Former Member
Jun 29, 2015 at 07:10 AM

proxy between Https / Peer certificate rejected by ChainVerifier

83 Views

Hi gurus,

we are working on a proxy to soap scenario in PO 7.4 through https. In order to achieve it I've configured the receiver soap channels using a digital certificate. I have imported the server's certificate in the TrustedCA's keystore so that it is accessible.

However if I test my scenario, I get the following error:

Message processing failed. Cause:

com.sap.engine.interfaces.messaging.api.exception.MessagingException:

iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier

I've serched this error through the forums and read that it is produced because our certificate is not verified by a certificate authoritiy.

First it was bypassed by the proxy (bluecoat) we got success. Root Cause: The proxy software changed the certificate chain like;

verisign_root

---symantec class 3

------SrvCert

Blouecoat

---SrvCert

The Security team wouldn't like to disable proxy. How can we proceed?

Please provide additional inputs.

Thanks in advance.