Hello All,
I am trying to configure SAP Cloud Connector (v2.13.0) to integrate with a sub account in Cloud Foundry. I am following the instructions mentioned in the documentation at
I am getting an error while defining a sub account using the Cloud Connector Administration UI. The detailed error log in the ljs_trace.log is as follows:
2021-01-25 22:38:49,181 +0530#INFO#com.sap.scc.config#https-jsse-nio2-8443-exec-5# #Proxy update not required - no changed detected 2021-01-25 22:38:49,465 +0530#WARN#com.sap.scc.config#https-jsse-nio2-8443-exec-5# #Creating an sslContextProvider for account <<sub account id>>@cf.eu10.hana.ondemand.com without SSLContext. Keystore did not contain a certificate. 2021-01-25 22:38:49,467 +0530#INFO#com.sap.scc.security#https-jsse-nio2-8443-exec-5# #Will retrieve Connectivity CA certificate from SAP Cloud Platform 2021-01-25 22:38:49,467 +0530#INFO#com.sap.scc.security#https-jsse-nio2-8443-exec-5# #Executing Http Get request to https://connectivitycertsigning.cf.eu10.hana.ondemand.com:443/certificate/management/v1/trusted/ca/account/<<sub account id>> 2021-01-25 22:38:49,709 +0530#INFO#com.sap.scc.security#https-jsse-nio2-8443-exec-5# #Returned Http Response with code 200 2021-01-25 22:38:49,710 +0530#INFO#com.sap.scc.security#https-jsse-nio2-8443-exec-5# #Connectivity CA certificate retrieved successfully from SAP Cloud Platform 2021-01-25 22:38:59,550 +0530#INFO#com.sap.scc.security#https-jsse-nio2-8443-exec-5# #New RSA keypair was generated. Key size used 4096, time 9837 ms 2021-01-25 22:38:59,603 +0530#INFO#com.sap.scc.security#https-jsse-nio2-8443-exec-5# #Send Certificate Signing Request for Cloud Connector certificate to SAP Cloud Platform 2021-01-25 22:38:59,604 +0530#INFO#com.sap.scc.security#https-jsse-nio2-8443-exec-5# #Executing Http Post request to https://connectivitycertsigning.cf.eu10.hana.ondemand.com:443/certificate/management/v1/sign/account/<<sub account id>> 2021-01-25 22:39:00,993 +0530#INFO#com.sap.scc.security#https-jsse-nio2-8443-exec-5# #Returned Http Response with code 401 2021-01-25 22:39:00,995 +0530#INFO#com.sap.scc.config#https-jsse-nio2-8443-exec-5# #Stopping service channels on <<sub account id>>@cf.eu10.hana.ondemand.com 2021-01-25 22:39:00,995 +0530#WARN#com.sap.scc.rt#https-jsse-nio2-8443-exec-5# #Tunnel account:///<<sub account id>> is inoperative. SccEndpoint com.sap.scc.config.TunnelSccEndpoint@6f1daa0f ok, and context == null 2021-01-25 22:39:00,999 +0530#ERROR#com.sap.scc#https-jsse-nio2-8443-exec-5# #SCC handshake failed: 401 — Unauthorized com.sap.scc.servlets.SccHandshakeException: SCC handshake failed: 401 — Unauthorized
I have referred to the following KBs
https://apps.support.sap.com/sap/support/knowledge/en/2461997
https://launchpad.support.sap.com/#/notes/2571763
and verified the following:
Region: Correctly chosen as Europe Frankfurt AWS (and not Europe Frankfurt)
Sub Account: The full sub account id (GUID form)
Sub Account User: Used the email address
Sub Account Password: Used the password with passcode as it is an MFA account (tried without the passcode as well).
Any thoughts on what else could be going wrong?
Thanks for your inputs. Prabal Rakshit