OAG connection to backend SSL service returns 'No Trusted Certificates On Chain For This Context' message in trace file.
(Doc ID 2104545.1)
Last updated on FEBRUARY 06, 2024
Applies to:
Oracle API Gateway - Version 11.1.2.1.0 and laterInformation in this document applies to any platform.
Symptoms
Requests are failing with 'no trusted certificates on chain for this context' though the appropriate certificates are loaded into the gateway.
The full error being seen in the trace is the following:
ERROR <TIMESTAMP> [<THREAD ID>] no trusted certificates on chain for this context:
{ subject: CN=<SERVER CERTIFICATE>}
{ subject: CN=<INTERMEDIATE CERTIFICATE> }
{ subject: CN=<ROOT CERTIFICATE> }
ERROR <TIMESTAMP> [<THREAD ID>] [SSL alert write 0xXXX, 0xXXXX]: bad certificate [fatal] { subject: CN=<SERVER CERTIFICATE>}.
ERROR <TIMESTAMP> [<THREAD ID>] [SSL_connect, 0xXXXX]: error - certificate not trusted { subject: CN=<SERVER CERTIFICATE> }.
ERROR <TIMESTAMP> [<THREAD ID>] transient failure connecting to remote: SSL protocol error
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |