cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Peer certificate rejected by ChainVerifier

Go to solution
Former Member

on ‎08-11-2008 11:31 AM

0 Kudos

Hi,

I am trying to access a https type service. It involves username and password which i have given in the receiver soap adapter. (using a soap to soap synchronous scenario)

I have imported the server's certificate in the TrustedCA's keystore so that it is accessible. But while testing it, I receive an error "Peer certificate rejected by ChainVerifier".

What may be the issue?

Kindly guide me.

Regards,

Kevin

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Shabarish_Nair
Active Contributor
‎08-11-2008 12:26 PM
0 Kudos

can you confirm if the certificates common name (CN) matches the url/host name you are trying to hit?

Show replies
Show replies
Former Member
‎08-12-2008 4:37 AM
0 Kudos

Hi,

In the issuer CN is the local host and in the owner CN is the host name.

Regards

Former Member
‎08-12-2008 5:00 AM
0 Kudos

Hi,

Follow the instructions of note 694290 to import the certificate chain

Intially you need to export the already existing private key to a .p8 file named exactly after the already existing private key entry. Then delete the private key entry and hit Load, put the .p8 file. Just export and then import the certificate file (CSR response), the intermediate CA certificate and the root CA certificate.

This should work

Thanks

Swarup

Former Member
‎08-12-2008 6:20 AM
0 Kudos

HEY... It worked.......

Thanks a lot......

Thank you very much...

Answers (6)

Answers (6)

former_member249322
Member
‎05-24-2013 3:39 PM
0 Kudos

I experienced the same problem.

The solution for my problem was to add a parameter   strictHostnameChecking  with a value  false     under the Advanded tab - advanced mode - additional parameters   in the communication channel.

Show replies
Show replies
Former Member
‎01-17-2012 12:33 PM
0 Kudos

I know this thread is old, but recently I had the same error message but a very different and maybe disturbing solution:

All keys were correct in a SAP -> PI -> SOAP scenario with a user authentification. The reason for the error was in the typing of the user name which had to be in lower case for the connecting service, but I was using it in upper case.

Show replies
Show replies
Shabarish_Nair
Active Contributor
‎08-11-2008 12:25 PM
0 Kudos

can you confirm if the certificates common name (CN) matches the url/host name you are trying to hit?

Show replies
Show replies
Shabarish_Nair
Active Contributor
‎08-11-2008 12:25 PM
0 Kudos

can you confirm if the certificates common name (CN) matches the url/host name you are trying to hit?

Show replies
Show replies
Shabarish_Nair
Active Contributor
‎08-11-2008 12:25 PM
0 Kudos

can you confirm if the certificates common name (CN) matches the url/host name you are trying to hit?

Show replies
Show replies
prateek
Active Contributor
‎08-11-2008 11:34 AM
0 Kudos

Make sure u have imported the entire CA hierarchy of your server certificate into the list of trusted CA's in XI.

Regards,

Prateek

Show replies
Show replies
Ask a Question