Error: "Server certificate rejected by ChainVerifier".
Article ID: KB0085697
Updated On:
| Products | Versions |
|---|---|
| TIBCO ActiveMatrix BusinessWorks | - |
| Not Applicable | - |
Description
Resolution:
SSLin HTTP, FTP or JMS connect resource is enabled and a server's certificates are imported into a trusted certificate folder in a project. At run time, the following error is thrown: "Server certificate rejected by ChainVerifier".
Enviroment:
===========
All versions of BW
All OS
Resolution:
===========
The "Server certificate rejected by ChainVerifier" error can be caused by:
1). A missing certificate (usually the root CA).
2). A bad certificate.
3). The certificate in the project does not match the certificate on server side.
You can enable tracing to obtain more error detail. The following properties can be used to troubleshoot SSL related problems:
Trace.Task.*=true
bw.plugin.http.server.debug:true
java.property.javax.net.debug=ssl
If you test in Designer, create a properties.cfg file under any directory you prefer to use and place the above properties into the properties.cfg file. Then, specify the location of this properties.cfg file in the Advanced tab -> Test Engine User Args field. Start the process and check the Designer console output by finding and reading the "SSL_Debug" lines.
SSLin HTTP, FTP or JMS connect resource is enabled and a server's certificates are imported into a trusted certificate folder in a project. At run time, the following error is thrown: "Server certificate rejected by ChainVerifier".
Enviroment:
===========
All versions of BW
All OS
Resolution:
===========
The "Server certificate rejected by ChainVerifier" error can be caused by:
1). A missing certificate (usually the root CA).
2). A bad certificate.
3). The certificate in the project does not match the certificate on server side.
You can enable tracing to obtain more error detail. The following properties can be used to troubleshoot SSL related problems:
Trace.Task.*=true
bw.plugin.http.server.debug:true
java.property.javax.net.debug=ssl
If you test in Designer, create a properties.cfg file under any directory you prefer to use and place the above properties into the properties.cfg file. Then, specify the location of this properties.cfg file in the Advanced tab -> Test Engine User Args field. Start the process and check the Designer console output by finding and reading the "SSL_Debug" lines.
Issue/Introduction
Error: "Server certificate rejected by ChainVerifier".
Feedback
Yes
No
Powered by
