My Oracle Support Banner

OAG connection to backend SSL service returns 'No Trusted Certificates On Chain For This Context' message in trace file. (Doc ID 2104545.1)

Last updated on FEBRUARY 24, 2021

Applies to:

Oracle API Gateway - Version 11.1.2.1.0 and later
Information in this document applies to any platform.

Symptoms

Requests are failing with 'no trusted certificates on chain for this context' though the appropriate certificates are loaded into the gateway.

The full error being seen in the trace is the following:

ERROR <TIMESTAMP> [<THREAD ID>]        no trusted certificates on chain for this context:
{ subject: CN=<SERVER CERTIFICATE>}
{ subject: CN=<INTERMEDIATE CERTIFICATE> }
{ subject: CN=<ROOT CERTIFICATE> }
ERROR   <TIMESTAMP> [<THREAD ID>]         [SSL alert write 0xXXX, 0xXXXX]: bad certificate [fatal] { subject: CN=<SERVER CERTIFICATE>}.
ERROR   <TIMESTAMP> [<THREAD ID>]        [SSL_connect, 0xXXXX]: error - certificate not trusted { subject: CN=<SERVER CERTIFICATE> }.
ERROR   <TIMESTAMP> [<THREAD ID>]         transient failure connecting to remote: SSL protocol error

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.