[RVRD-A]: Failed to complete connection to neighbor RVRD-B because that neighbor did not provide correct certificate.

[RVRD-A]: Failed to complete connection to neighbor RVRD-B because that neighbor did not provide correct certificate.

book

Article ID: KB0078768

calendar_today

Updated On:

Products Versions
TIBCO Rendezvous -
Not Applicable -

Description

[RVRD-A]: Failed to complete connection to neighbor RVRD-B because that neighbor did not provide correct certificate.

Description:

The old cert has expired.  We tried to replace it with a new cert, but we got the following error in rvrd logfile when we use a new certificate:

 

In RVRD-A’s log:
2015-06-23 00:54:33 /apps/tibco/tibco/tibrv/8.3/bin/rvrd: [RVRD-A]: Failed to complete connection to neighbor RVRD-B because that neighbor did not provide correct certificate.
2015-06-23 00:55:03 /apps/tibco/tibco/tibrv/8.3/bin/rvrd: [RVRD-A]: Failed to complete connection to neighbor RVRD-B because that neighbor did not provide correct certificate.
2015-06-23 00:55:33 /apps/tibco/tibco/tibrv/8.3/bin/rvrd: [RVRD-A]: Failed to complete connection to neighbor RVRD-B because that neighbor did not provide correct certificate.

In RVRD-B’s log:
2015-06-23 00:55:52 D:\tibco\tibrv\8.3\bin\rvrd.exe: [RVRD-B]: Failed to complete connection to neighbor RVRD-A because that neighbor did not provide correct certificate.
2015-06-23 00:56:22 D:\tibco\tibrv\8.3\bin\rvrd.exe: [RVRD-B]: Failed to complete connection to neighbor RVRD-A because that neighbor did not provide correct certificate.
2015-06-23 00:56:52 D:\tibco\tibrv\8.3\bin\rvrd.exe: [RVRD-B]: Failed to complete connection to neighbor RVRD-A because that neighbor did not provide correct certificate.
 

Environment

All

Resolution

To import the cert from RVRD “Certificates” page, please make sure you do the following: 

(a). RVRD-A:  Go to RVRD Http Interface => "Certificates"

add the certificateA there.
 

(b). RVRD-B:  Go to RVRD Http Interface => "Certificates"

add the certificateB there. 

If you are using SSL protocols, the local router expects the remote router to present a certificate as evidence of its identity.  If you decide to use SSL connection between 2 routers, you should define the certificate of the authorized neighbor for the router from each side. The local router expects the remote router to present a certificate as its identity.   To enable SSL, a valid peer certificate in PEM format must be supplied.

 

Therefore, you also need to do:

 

(c). RVRD-A: Go to RVRD Http Interface => Routers => Neighbor

Paste the text of the public certificateB (in PEM encoding) in the "Certificate of Expected Peer:" field

 

(d). RVRD-B: Go to RVRD Http Interface => Routers => Neighbor

Paste the text of the public certificateA (in PEM encoding) in the "Certificate of Expected Peer:" field

Issue/Introduction

[RVRD-A]:Failed to complete connection to neighbor RVRD-B because that neighbor did not provide correct certificate.
Powered by Wolken Software