Certificate Exception Error - SAP PO connecting to our Web API - we have a Let's Encrypt Certificate

RichW · May 21, 2018, 1:04pm

Hello,

Error

SSLCertificateException

Background

Our client is trying to connect to a SOAP API on our web server
They are using SAP PO (Process Orchestration)
We have a Let’s Encrypt Certificate installed

Query

According to my reading of the following:

https://letsencrypt.org/certificates/

Should they be installing this Root CA in their Certificate Store ?

Issuer “DST Root CA X3.”

stevenzhu · May 21, 2018, 1:13pm

Hi,

This isn’t related to LE, since the certificate is valid.

Please check this post for more information.
https://answers.sap.com/questions/178669/soap-receiver-ssl-certificate-sslcertificateexcept.html

Thank you

RichW · May 21, 2018, 1:19pm

Hello stevenzhu

Thanks for the quick and helpful response.

I have just received a detailed email message from the client.

child : CN=qa.XXX.XXXXXservices.com
intermediate: CN=Let's Encrypt Authority X3,O=Let's Encrypt,C=US
root : CN=DST Root CA X3,O=Digital Signature Trust Co.

So they do have the correct root CA.

This new information from them:
"From the HTTP logs, we see that the chain verifier is referring to 2 certificates"

... which refers to our hosting server, so I am following up there with our Hosting Service Provider.

Thanks again.

The Let'sEncrypt part appears to be all good.

system · June 20, 2018, 1:19pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.