SSL Certificate validation failure

Troubleshooting

Problem

WPG fails to validate participant certificate during an inbound transmission to a HTTPS Target. The following error message is logged in the Console: - BCG210001 - Check Channel Error: SSL Cert validation failed, IntBusinessId: , FromBusinessId: , ClientSSLCert: null

Resolving The Problem

The bcg_router.log shows the following entry:
- INFO [CachedChannelProcess] [main Thread 0] - FromIP=192.77.161.22, ClientCertName=null, validateClientCert=1, validateClientIP=0

Which indicates that in the participant (source) gateway, the field "Validate Client SSL Cert" is set to "Yes". This field however needs to be used only when the incoming transaction uses SSL server and client authentication, because only in that case would WPG have the Client certificate to validate.

If the user does not need or is not using client authentication, then the participant gateway "Validate Client SSL Cert" attribute must be set to "No", which resolved the problem.

[{"Product":{"code":"SSDKJ8","label":"WebSphere Partner Gateway Enterprise Edition"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Not Applicable","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"6.0","Edition":"Advanced;Enterprise","Line of Business":{"code":"LOB59","label":"Sustainability Software"}}]

Tips

SSL Certificate validation failure

Troubleshooting

Problem

Resolving The Problem

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?