on 08-11-2008 11:31 AM
Hi,
I am trying to access a https type service. It involves username and password which i have given in the receiver soap adapter. (using a soap to soap synchronous scenario)
I have imported the server's certificate in the TrustedCA's keystore so that it is accessible. But while testing it, I receive an error "Peer certificate rejected by ChainVerifier".
What may be the issue?
Kindly guide me.
Regards,
Kevin
can you confirm if the certificates common name (CN) matches the url/host name you are trying to hit?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Follow the instructions of note 694290 to import the certificate chain
Intially you need to export the already existing private key to a .p8 file named exactly after the already existing private key entry. Then delete the private key entry and hit Load, put the .p8 file. Just export and then import the certificate file (CSR response), the intermediate CA certificate and the root CA certificate.
This should work
Thanks
Swarup
I experienced the same problem.
The solution for my problem was to add a parameter strictHostnameChecking with a value false under the Advanded tab - advanced mode - additional parameters in the communication channel.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I know this thread is old, but recently I had the same error message but a very different and maybe disturbing solution:
All keys were correct in a SAP -> PI -> SOAP scenario with a user authentification. The reason for the error was in the typing of the user name which had to be in lower case for the connecting service, but I was using it in upper case.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
can you confirm if the certificates common name (CN) matches the url/host name you are trying to hit?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
can you confirm if the certificates common name (CN) matches the url/host name you are trying to hit?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
can you confirm if the certificates common name (CN) matches the url/host name you are trying to hit?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Make sure u have imported the entire CA hierarchy of your server certificate into the list of trusted CA's in XI.
Regards,
Prateek
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
90 | |
10 | |
10 | |
10 | |
7 | |
7 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.