on 02-13-2014 5:38 PM
Hello all,
we get ICM_HTTP_SSL_ERROR an SM59 RFC destination I had change certificat for this connection but still I get the same error. I have this from smicm
[Thr 6868] *** ERROR => IcmConnInitClientSSL: SapSSLSessionStart failed (-57): SSSLERR_SSL_CONNECT {00020037} [icxxconn.c 1957]
[Thr 16288] Thu Feb 13 18:23:45 2014
[Thr 16288] *** ERROR during SecudeSSL_SessionStart() from SSL_connect()==SSL_ERROR_SSL
[Thr 16288] session uses PSE file "E:\usr\sap\PXA\DVEBMGS02\sec\SAPSSLC.pse"
[Thr 16288] SecudeSSL_SessionStart: SSL_connect() failed
[Thr 16288] secude_error 9 (0x00000009) = "the verification of the server's certificate chain failed"
[Thr 16288] >> Begin of Secude-SSL Errorstack >>
[Thr 16288] ERROR in ssl3_get_server_certificate: (9/0x0009) the verification of the server's certificate chain failed #
[Thr 16288] ERROR in af_verify_Certificates: (27/0x001b) Chain of certificates is incomplete : "CN=VeriSign Class 3 Public Primary C
[Thr 16288] ERROR in get_path: (27/0x001b) Found root certificate of <CN=VeriSign Class 3 Public Primary Certification Authority - G
[Thr 16288] ERROR in verify_with_PKs: (27/0x001b) Found root certificate of <CN=VeriSign Class 3 Public Primary Certification Author
[Thr 16288] << End of Secude-SSL Errorstack
[Thr 16288] SSL_get_state() returned 0x00002131 "SSLv3 read server certificate B"
[Thr 16288] SSL NI-sock: local=10.0.26.146:64761 peer=81.200.197.147:443
[Thr 16288] <<- ERROR: SapSSLSessionStart(sssl_hdl=000000002EAE0110)==SSSLERR_SSL_CONNECT
[Thr 16288] *** ERROR => IcmConnInitClientSSL: SapSSLSessionStart failed (-57): SSSLERR_SSL_CONNECT {00020043} [icxxconn.c 1957]
[Thr 5564] Thu Feb 13 18:23:48 2014
Any help
Thanks
Reza
Hi Reza -
the verification of the server's certificate chain failed ?
>>>Did you import all the certificates? and make sure they are still valid
Also have a look at the below thread
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Please refer SAP note 852688 , Hope it will be help ful and please chech the below link
Regards
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
the problam in 2 causes:
1) the certificate expired or was not set as trusted in the client system.
please gone through the below steps.
steps:
1. the old ssl-certificate expired. To resolve this, create a new one refer to the article:
<Enabling SSL and Client Certificates on the SAP J2EE Engine>
2. get the certificate with accessing the https url; and with the prompt, install the certificate in your local machine.
3. set the certificate as trusted in transaction /nstrust. Refer to Thomas Jung blog:
/people/thomas.jung3/blog/2005/05/13/calling-webservices-from-abap-via-https
4. restart ICM.
to transaction /nsmicm, Menu: Administration >> ICM >> Exit Soft.
Regards
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
81 | |
9 | |
9 | |
7 | |
7 | |
7 | |
6 | |
5 | |
5 | |
5 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.