Skip to Content

Peer certificate rejected by chain verifier in receiver rest adapter

Hi All,

Can you please suggest me on the below issue....!

I am working on proxy to rest interface. in this case i am getting error in rest receiver channel (ping channel)

Error: peer certificate rejected by chain verifier

I have imported certificates in NWA which is given by third party. but still i am getting same error in ping channel. Please find the screenshot below

But when i am trying to connect with SOAP channel , it is working fine.

Please refer NWA certificate screen shot.

Here i am using HTTPS url to connect with third party.

Can you please check my channel configuration below...

Please check and suggest me.. whether i need to change any configuration or changes from PI side??

Add comment
10|10000 characters needed characters exceeded

  • Follow
  • Get RSS Feed

1 Answer

  • Nov 01, 2018 at 04:34 AM

    Dear,

    Basically the server certificate chain should be in order Own -> Intermedite -> Root. The chain is considered complete if Issuer of certificate[0] matches with subject of certificate[1] and so on. For Root CA, the issuer and subject are same. Please ensure that the whole certificate chain is complete and all the certificates are imported into the Trusted CA's keystore view in NWA.

    You can download and install XPI Inspector tool as per note 1514898 - XPI Inspector for troubleshooting XI, use Example 50 (XI Channel) for the issue REST receiver channel, activate the following additional traces, reproduce this error and check more debug level traces to narrow down the root cause.

    1. Collect debug traces from Messaging System
    2. Collect debug trace from XI Module Processor
    3. Collect HTTP Traces

    Best regards,
    Tina

    Add comment
    10|10000 characters needed characters exceeded