Error: "java.security.cert.CertificateException: Certificates does not conform to algorithm constraints" exception in BusinessConnect.
Article ID: KB0085546
Updated On:
| Products | Versions |
|---|---|
| TIBCO BusinessConnect | - |
| Not Applicable | - |
Description
Description:
When BC sends an outbound request to a trading partner via the HTTPS transport, the following error occurs: "StatusCode from Transport is: 699. StatusMsg from Transport is: Error connecting to host b2b.tp_host_name.com at port 9999. java.security.cert.CertificateException: Certificates does not conform to algorithm constraints."
Symptoms:
Cause:
When BC sends an outbound request to a trading partner via the HTTPS transport, the following error occurs: "StatusCode from Transport is: 699. StatusMsg from Transport is: Error connecting to host b2b.tp_host_name.com at port 9999. java.security.cert.CertificateException: Certificates does not conform to algorithm constraints."
Symptoms:
As described.
Cause:
The "jdk.certpath.disabledAlgorithms=MD2" statement in java.security file of JRE 1.7.0 causes this error. JRE 1.7 tightened up the use of less secure algorithms that can be used in the SSL handshake. Some older servers with older certificates may not support some of the newer security algorithms.
Issue/Introduction
Error: "java.security.cert.CertificateException: Certificates does not conform to algorithm constraints" exception in BusinessConnect.
Resolution
Comment out the following line in the java.security file in the TIBCOJRE directory:
"jdk.certpath.disabledAlgorithms=MD2" statement
In the java.security file of JRE 1.7.0 you can find the java.security file in TIBCO JRE home.
Example: $TIBCO_HOME\tibcojre\1.7.0\lib\security\java.security
This will relax the security algorithm restriction.
Feedback
Yes
No
Powered by
