Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Rasaiya Nadar (RasaiyaNadar)
Accenture
IN
RasaiyaNadar Member since 2013 78 posts
Posted: Jul 1, 2016
Last activity: Jul 14, 2016
Posted: 1 Jul 2016 9:37 EDT
Last activity: 14 Jul 2016 6:33 EDT
Closed

Configure 2 way SSL in jar which is called from connect-java

Here is a situation where I need to call a jar , for which I have used connect java.

Now from that jar I need to make a 2 way handshake , what can I do ?

How to configure SSL Keystore and Trustore ?

P.S

Pega 7.1.7

To see attachments, please log in.
Security

Posted: 8 years ago
Posted: 4 Jul 2016 7:04 EDT
Mahesh Midthuru (Mahesh Midthuru)
PEGA
Senior Principal Application Engineer, Customer Service Digital
Pegasystems Inc.
US

Hi Rasaiya,

Kindly go through the below PDN article where it is explained about the 2 way SSL connection where it explains about the client/server trust stores setup which can be helpful to you.

https://docs-previous.pega.com/how-set-two-way-ssl-soap-over-http-using-rule-connect-soap

Regards,

Mahesh

To see attachments, please log in.
Posted: 8 years ago
Updated: 8 years ago
Posted: 4 Jul 2016 8:43 EDT
Updated: 5 Jul 2016 0:20 EDT
Rasaiya Nadar (RasaiyaNadar)
Accenture
IN

The above link has quite some useful information, especially javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

I have used the technique of creating data instance for keystore and trust store, and then created a SSL profile to configure these keystore and truststore.

And then configure the ssl profile in connect-soap..

But this 2 way ssl through connect java is new to me, and still wondering where to configure the ssl profile for this, as there is no tab I can see for the connect java, the way it is there in connect soap.

Guide me if my approach seems to be wrong.

BTW forgot to share the public key with the remote system, will check if issue gets solved after certificate installation at their end ☺

To see attachments, please log in.
Posted: 8 years ago
Posted: 7 Jul 2016 1:07 EDT
Rasaiya Nadar (RasaiyaNadar)
Accenture
IN

Configured the keystore on unix server and it is working fine. The problem was that the keystore and trust store was not set on server boot up, but on call to connect java.

But this seems to be redundant as i am already storing the keystore in data instance, then why to store it on unix server as well.

Created another post to ask suggestion on how can we use keystore present in datainstance for connect java

https://collaborate.pega.com/question/it-prossible-use-keystore-present-data-instance-configuring-2-way-ssl-connect-java

To see attachments, please log in.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice