My Oracle Support Banner

WebCenter/SOA Integration: Unable to Connect to SOA Server Due to FATAL Alert:BAD_CERTIFICATE - A Corrupt or Unuseable Certificate was Received. (Doc ID 1072744.1)

Last updated on JULY 24, 2018

Applies to:

Oracle WebCenter Portal - Version 11.1.1.2.0 to 11.1.1.3.0 [Release 11g]
Information in this document applies to any platform.
Checked for relevance on 05-Feb-2015

Symptoms

When trying to setup WebCenter Spaces with SOA worklist, the following error is generated on the standard output or the WLS_Spaces/diagnostic logs when attempting to invite a user in the group space:

[2010-03-10T13:45:18.609-05:00] [WLS_Spaces2] [NOTIFICATION] [] [oracle.webcenter.community.utils.CommunityWorkflowUtil] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: mrtester] [ecid: 004WNQn9P0l2RPaPTMe9Tc0001Qv0001Et,0:1] [APP: webcenter] [URI: /webcenter/faces/oracle/webcenter/community/view/pages/mgmt/CommunityAdministration.jspx] BPEL_URL_PING: Pinging the url = https://tools.au.oracle.com/soa-infra/services/default/CommunityWorkflows/Message?WSDL
[2010-03-10T13:45:19.239-05:00] [WLS_Spaces2] [WARNING] [] [oracle.webcenter.community.utils.CommunityWorkflowUtil] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: mrtester] [ecid: 004WNQn9P0l2RPaPTMe9Tc0001Qv0001Et,0:1] [APP: webcenter] [URI: /webcenter/faces/oracle/webcenter/community/view/pages/mgmt/CommunityAdministration.jspx] CommunityWorkflowUtil Unable to connectto SOA Server due to FATAL Alert:BAD_CERTIFICATE - A corrupt or unuseable certificate was received.
[2010-03-10T13:45:19.240-05:00] [WLS_Spaces2] [ERROR] [] [oracle.webcenter.webcenterapp] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: mrtester] [ecid: 004WNQn9P0l2RPaPTMe9Tc0001Qv0001Et,0:1] [APP: webcenter] [URI: /webcenter/faces/oracle/webcenter/community/view/pages/mgmt/CommunityAdministration.jspx] WCS#2010.03.10.13.45.19: Sending invitation to user(s) failed. The reason is : SOA server is either down or not properly configured.
[2010-03-10T13:45:19.240-05:00] [WLS_Spaces2] [ERROR] [] [oracle.webcenter.webcenterapp] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: mrtester] [ecid: 004WNQn9P0l2RPaPTMe9Tc0001Qv0001Et,0:1] [APP: webcenter] [URI: /webcenter/faces/oracle/webcenter/community/view/pages/mgmt/CommunityAdministration.jspx] [[
oracle.webcenter.webcenterapp.WebCenterException: Sending invitation to user(s) failed. The reason is : SOA server is either down or not properly configured.
at oracle.webcenter.webcenterapp.internal.view.backing.WebCenterAdminSecurityBean.invokeInviteMembers(WebCenterAdminSecurityBean.java:1735)
at oracle.webcenter.webcenterapp.internal.view.backing.WebCenterAdminSecurityBean.addInviteMembers(WebCenterAdminSecurityBean.java:2664)

  


To understand more on this error, further debug logging was turned on as follows:

  1. Edit setdomain.env usually located under middleware_home/user_projects/domains/<domain_name>/bin)  setdomain.env :
    Look for the following lines around line 478 :

    JAVA_PROPERTIES="${JAVA_PROPERTIES} ${EXTRA_JAVA_PROPERTIES}"
    export JAVA_PROPERTIES


    and change:
    JAVA_PROPERTIES="${JAVA_PROPERTIES} ${EXTRA_JAVA_PROPERTIES} -Dssl.debug=true -Dweblogic.security.SSL.verbose=true -Dweblogic.StdoutDebugEnabled=true"
  2. Restart WLS_Spaces, reproduce the problem.

With debugging turned on, the WLS_Spaces/diagnostics log  files then shows:
(Check out either WC_Spaces.out or WC_Spaces-diagnostic.log)

####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1268265276811> <BEA-000000> <Signature verification failed because RSA key public exponent [3] is too small>

####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1268265276819> <BEA-000000> <weblogic user specified trustmanager validation status 8>
####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1268265276822> <BEA-000000> <Validation error = 8>
####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1268265276822> <BEA-000000> <SSLTrustValidator returns: 8>
####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1268265276822> <BEA-000000> <Trust status (8): SIGNATURE_INVALID>
####<Mar 10, 2010 6:54:36 PM EST> <Debug> <SecuritySSL> <iepwc1.doe.gov> <WLS_Spaces1> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1268265276823> <BEA-000000> <NEW ALERT with Severity: FATAL, Type: 42
java.lang.Exception: New alert stack
at com.certicom.tls.record.alert.Alert.<init>(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
at com.certicom.tls.record.handshake.ClientStateReceivedServerHello.handle(Unknown Source)

  

Changes

WebCenter  is configured to call SSL (https)  BPEL SOAP URL for worklist configuration.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.