Callback From ERP To ICS Fails With Error "java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors"

(Doc ID 2255341.1)

Last updated on MAY 10, 2017

Applies to:

Integration Cloud Service - Version N/A and later
Information in this document applies to any platform.

Symptoms

When ICS Receives callback from Oracle ERP, it fails with below exception in the log:

java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors
at sun.security.provider.certpath.PKIXCertPathValidator.engineValidate(PKIXCertPathValidator.java:208)
at java.security.cert.CertPathValidator.validate(CertPathValidator.java:279)
at oracle.wsm.security.jps.WsmKeyStore.validateCertificatePath(WsmKeyStore.java:774)
at oracle.wsm.security.jps.WsmKeyStore.validateCertificatePath(WsmKeyStore.java:729)
at oracle.wsm.security.policy.scenario.util.ScenarioUtils.verifyAssertionIssuerCert(ScenarioUtils.java:5175)
at oracle.wsm.security.policy.scenario.processor.WssSamlTokenProcessor.verifyIssuersSignature(WssSamlTokenProcessor.java:1006)
at oracle.wsm.security.policy.scenario.processor.WssSaml11TokenProcessor.authenticateSamlToken(WssSaml11TokenProcessor.java:376)
at oracle.wsm.security.policy.scenario.processor.WssSaml11TokenProcessor.authenticate(WssSaml11TokenProcessor.java:264)
at oracle.wsm.security.policy.scenario.processor.WssSamlTokenProcessor.verify(WssSamlTokenProcessor.java:761)
at oracle.wsm.security.policy.scenario.executor.Wss11SamlTokenBearerScenarioExecutor.receiveRequest(Wss11SamlTokenBearerScenarioExecutor.java:104)
at oracle.wsm.security.policy.scenario.executor.SecurityScenarioExecutor.execute(SecurityScenarioExecutor.java:652)
at oracle.wsm.policyengine.impl.runtime.AssertionExecutor.execute(AssertionExecutor.java:44)
at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeSimpleAssertion(WSPolicyRuntimeExecutor.java:515)
at oracle.wsm.policyengine.impl.runtime.XORPolicyExecutor.executeAssertion(XORPolicyExecutor.java:1950)
at oracle.wsm.policyengine.impl.runtime.XORPolicyExecutor.executePossibleMatchingAssertionsList(XORPolicyExecutor.java:260)
at oracle.wsm.policyengine.impl.runtime.XORPolicyExecutor.processRequest(XORPolicyExecutor.java:203)
at oracle.wsm.policyengine.impl.runtime.XORPolicyExecutor.execute(XORPolicyExecutor.java:173)
at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeXorAssertion(WSPolicyRuntimeExecutor.java:476)
at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeAndAssertion(WSPolicyRuntimeExecutor.java:421)
at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.execute(WSPolicyRuntimeExecutor.java:374)
at oracle.wsm.policyengine.impl.PolicyExecutionEngine.execute(PolicyExecutionEngine.java:103)
at oracle.wsm.agent.WSMAgent.processCommon(WSMAgent.java:1276)
at oracle.wsm.agent.WSMAgent.processRequest(WSMAgent.java:566)
at oracle.wsm.agent.handler.WSMEngineInvoker.handleRequest(WSMEngineInvoker.java:505)



STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. Create a connection & integration to ERP to receive a callback.
 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms