WebCenter/SOA Integration: Unable to Connect to SOA Server Due to FATAL Alert:BAD_CERTIFICATE - A Corrupt or Unuseable Certificate was Received. (Doc ID 1072744.1)

Last updated on NOVEMBER 19, 2016

Applies to:

Oracle WebCenter Portal - Version 11.1.1.2.0 to 11.1.1.3.0 [Release 11g]
Information in this document applies to any platform.
Checked for relevance on 05-Feb-2015

Symptoms

When trying to setup WebCenter Spaces with SOA worklist, the following error is generated on the standard output or the WLS_Spaces/diagnostic logs when attempting to invite a user in the group space:

[2010-03-10T13:45:18.609-05:00] [WLS_Spaces2] [NOTIFICATION] [] [oracle.webcenter.community.utils.CommunityWorkflowUtil] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: mrtester] [ecid: 004WNQn9P0l2RPaPTMe9Tc0001Qv0001Et,0:1] [APP: webcenter] [URI: /webcenter/faces/oracle/webcenter/community/view/pages/mgmt/CommunityAdministration.jspx] BPEL_URL_PING: Pinging the url = https://tools.au.oracle.com/soa-infra/services/default/CommunityWorkflows/Message?WSDL
[2010-03-10T13:45:19.239-05:00] [WLS_Spaces2] [WARNING] [] [oracle.webcenter.community.utils.CommunityWorkflowUtil] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: mrtester] [ecid: 004WNQn9P0l2RPaPTMe9Tc0001Qv0001Et,0:1] [APP: webcenter] [URI: /webcenter/faces/oracle/webcenter/community/view/pages/mgmt/CommunityAdministration.jspx] CommunityWorkflowUtil Unable to connectto SOA Server due to FATAL Alert:BAD_CERTIFICATE - A corrupt or unuseable certificate was received.
[2010-03-10T13:45:19.240-05:00] [WLS_Spaces2] [ERROR] [] [oracle.webcenter.webcenterapp] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: mrtester] [ecid: 004WNQn9P0l2RPaPTMe9Tc0001Qv0001Et,0:1] [APP: webcenter] [URI: /webcenter/faces/oracle/webcenter/community/view/pages/mgmt/CommunityAdministration.jspx] WCS#2010.03.10.13.45.19: Sending invitation to user(s) failed. The reason is : SOA server is either down or not properly configured.
[2010-03-10T13:45:19.240-05:00] [WLS_Spaces2] [ERROR] [] [oracle.webcenter.webcenterapp] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: mrtester] [ecid: 004WNQn9P0l2RPaPTMe9Tc0001Qv0001Et,0:1] [APP: webcenter] [URI: /webcenter/faces/oracle/webcenter/community/view/pages/mgmt/CommunityAdministration.jspx] [[
oracle.webcenter.webcenterapp.WebCenterException: Sending invitation to user(s) failed. The reason is : SOA server is either down or not properly configured.
at oracle.webcenter.webcenterapp.internal.view.backing.WebCenterAdminSecurityBean.invokeInviteMembers(WebCenterAdminSecurityBean.java:1735)
at oracle.webcenter.webcenterapp.internal.view.backing.WebCenterAdminSecurityBean.addInviteMembers(WebCenterAdminSecurityBean.java:2664)

  


To understand more on this error, further debug logging was turned on as follows:

  1. Edit setdomain.env usually located under middleware_home/user_projects/domains/<domain_name>/bin)  setdomain.env :
    Look for the following lines around line 478 :

    JAVA_PROPERTIES="${JAVA_PROPERTIES} ${EXTRA_JAVA_PROPERTIES}"
    export JAVA_PROPERTIES


    and change:
    JAVA_PROPERTIES="${JAVA_PROPERTIES} ${EXTRA_JAVA_PROPERTIES} -Dssl.debug=true -Dweblogic.security.SSL.verbose=true -Dweblogic.StdoutDebugEnabled=true"
  2. Restart WLS_Spaces, reproduce the problem.

With debugging turned on, the WLS_Spaces/diagnostics log  files then shows:
(Check out either WC_Spaces.out or WC_Spaces-diagnostic.log)

####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1268265276811> <BEA-000000> <Signature verification failed because RSA key public exponent [3] is too small>

####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1268265276819> <BEA-000000> <weblogic user specified trustmanager validation status 8>
####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1268265276822> <BEA-000000> <Validation error = 8>
####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1268265276822> <BEA-000000> <SSLTrustValidator returns: 8>
####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1268265276822> <BEA-000000> <Trust status (8): SIGNATURE_INVALID>
####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1268265276823> <BEA-000000> <NEW ALERT with Severity: FATAL, Type: 42
java.lang.Exception: New alert stack
at com.certicom.tls.record.alert.Alert.<init>(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
at com.certicom.tls.record.handshake.ClientStateReceivedServerHello.handle(Unknown Source)

  

Changes

WebCenter  is configured to call SSL (https)  BPEL SOAP URL for worklist configuration.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms