Hi All,
Can you please suggest me on the below issue....!
I am working on proxy to rest interface. in this case i am getting error in rest receiver channel (ping channel)
Error: peer certificate rejected by chain verifier
I have imported certificates in NWA which is given by third party. but still i am getting same error in ping channel. Please find the screenshot below
But when i am trying to connect with SOAP channel , it is working fine.
Please refer NWA certificate screen shot.
Here i am using HTTPS url to connect with third party.
Can you please check my channel configuration below...
Please check and suggest me.. whether i need to change any configuration or changes from PI side??
1 Answer
-
Nov 01, 2018 at 04:34 AM
Dear,
Basically the server certificate chain should be in order Own -> Intermedite -> Root. The chain is considered complete if Issuer of certificate[0] matches with subject of certificate[1] and so on. For Root CA, the issuer and subject are same. Please ensure that the whole certificate chain is complete and all the certificates are imported into the Trusted CA's keystore view in NWA.
You can download and install XPI Inspector tool as per note 1514898 - XPI Inspector for troubleshooting XI, use Example 50 (XI Channel) for the issue REST receiver channel, activate the following additional traces, reproduce this error and check more debug level traces to narrow down the root cause.
1. Collect debug traces from Messaging System
2. Collect debug trace from XI Module Processor
3. Collect HTTP TracesBest regards,
TinaAdd comment
Add comment