7 Replies Latest reply on Jul 19, 2019 11:11 AM by Scott Crawford

    Webservice adapter SSL Connectiion failure

    Navin Bandi
      Share This:

      Hi Guys,

       

      I have installed 7.9.01 version of AO in a new environment and old environment 7.6.03 still exists.

       

      I am trying to test the webservices on new setup of 7.9.01 using SOAP Adapter version 20.16.03 but I am not able to make a connection.

       

      I have imported the certificates from new setup to old setup but it didnt helped me.

       

      Please find the request and responses.

       

       

      <soap-rpc-request>

      <use-ssl-certificate>true</use-ssl-certificate>

      <install-certificate>true</install-certificate>

      <allow-unsigned-certificate>false</allow-unsigned-certificate>

      <truststore-file>AO_Home/jvm/lib/security/cacerts</truststore-file>

      <passphrase>changeit</passphrase>

      <keystore-file>AO_Home/jvm/lib/security/cacerts</keystore-file>

      <keystore-passphrase>changeit</keystore-passphrase>

      <client-alias>client_full</client-alias>

      <http-connection-properties>

          <SoapAction>POST</SoapAction>

      </http-connection-properties>

      <transport>https-rpc</transport>

      <soap-url>https://FQDN:38080/baocdp/orca?wsdl</soap-url>

      <character-set />

      <download-attachments>false</download-attachments>

          <soap-message>

              <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/"

              xmlns:soa="http://bmc.com/ao/xsd/2008/09/soa" xmlns:oas=

              "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">

                  <soapenv:Header>

                      <oas:Security>

                          <oas:UsernameToken>

                              <oas:Username>navin</oas:Username>

                              <oas:Password>navin</oas:Password>

                          </oas:UsernameToken>

                      </oas:Security>

                  </soapenv:Header>

                  <soapenv:Body>

                      <soa:executeProcess>

                          <soa:gridName>GRID1</soa:gridName>

                          <soa:processName>:SOAP_WF:Get Schema</soa:processName>

                          <soa:parameters>

                              <soa:Input>

                                  <soa:Parameter>

                                      <soa:Name required="true">adapter name</soa:Name>

                                      <soa:Value soa:type="xs:string">

                                          <soa:Text>Rem_AO_VM09</soa:Text>

                                      </soa:Value>

                                  </soa:Parameter>

                              </soa:Input>

                          </soa:parameters>

                      </soa:executeProcess>

                  </soapenv:Body>

              </soapenv:Envelope>

          </soap-message>

      </soap-rpc-request>

       

       

       

      I kept changing the install-certificate and allow-unsigned-certificate values to check if any works.

       

       

      install-certificate = false allow-unsigned-certificate= true

      Error occurred making request: Message[summary=Exception in adapter: җSҮ. Error opening connection to URL Ҩttps://FQDN:38080/baocdp/orca?wsdlҮ Error: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake, detail=Exception in adapter: җSҮ. Error opening connection to URL Ҩttps://FQDN:38080/baocdp/orca?wsdlҮ Error: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake]

       

      install-certificate = false allow-unsigned-certificate= false

      Error occurred processing request data   Summary: Exception occurred in Adapter ғOAPAdapterҮ ҅rror establishing targets authenticity using SSL

       

       

      install-certificate = true allow-unsigned-certificate= true

      Error occurred processing request data   Summary: Exception occurred in Adapter ғOAPAdapterҮ ҃ertificate downloaded from FQDN:38080 is invalid.ҍ

       

      Caused by:

         Summary: Certificate downloaded from FQDN:38080 is invalid.

       

       

      Note: I deleted the default tomcat certificate from keystore of new setup due to self signed certificate and replaced it with signed certificate from our organisation.

       

       

      Please help and thanks in advance.

       

       

      Regards,

      Navin Bandi