BusinessConnect (BC) is unable to create a SSL connection with a vendor public key when the subject containins the wildcard character ("*")
Article ID: KB0085189
Updated On:
| Products | Versions |
|---|---|
| TIBCO BusinessConnect | - |
| Not Applicable | - |
Description
Resolution:
Description:
--------------
BC is unable to create a SSL connection with a vendor public key with a subject containing the wildcard character ("*"). BC rejects the connection with the following error:
Error sending request to Trading Partner: Message: Error connecting to host www.xyz.com at port 443 . Server certificate rejected by ChainVerifier when the subject in the host certificate is "*.xyz.com"
Environment:
---------------
All
Resolution:
---------------
BC does not support the use of wildcards in the subject of the certificate. If the user needs to support this feature, try setting the bc.securitylevel property (under Administrator>BusinessConnect>System Settings>Installed Protocols>BusinessConnect Server) to LOW. Setting the security to LOW configures BC to only verify the only the certificate chain from the server, and not verify that the subject name in the partner's SSL certificate matches the DNS server name.
Description:
--------------
BC is unable to create a SSL connection with a vendor public key with a subject containing the wildcard character ("*"). BC rejects the connection with the following error:
Error sending request to Trading Partner: Message: Error connecting to host www.xyz.com at port 443 . Server certificate rejected by ChainVerifier when the subject in the host certificate is "*.xyz.com"
Environment:
---------------
All
Resolution:
---------------
BC does not support the use of wildcards in the subject of the certificate. If the user needs to support this feature, try setting the bc.securitylevel property (under Administrator>BusinessConnect>System Settings>Installed Protocols>BusinessConnect Server) to LOW. Setting the security to LOW configures BC to only verify the only the certificate chain from the server, and not verify that the subject name in the partner's SSL certificate matches the DNS server name.
Issue/Introduction
BusinessConnect (BC) is unable to create a SSL connection with a vendor public key when the subject containins the wildcard character ("*")
Feedback
Yes
No
Powered by
