Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

SSL Handshake Error

Former Member

on ‎2019 Jul 31 8:32 AM

0 Likes
4,720

I am currently using an RFC of Type " HTTP Connections to External Sever" to establish connectivity with a third party system with Target Host as Spectrum.pitneybowes.com and Path Prefix as /Soap/ .

I have installed the SSL Certificate of the above Target Host in Strust and I am able to establish connectivity.

But when I use the Sub Domain of the above mentioned Target Host i.e. microbatch.spectrum.pitneybowes.com and Path Prefix as /Soap / with the very same SSL Certificate then I am not able to establish connectivity as it throws an SSL Handshake Error.

According to the owner of the third party system the SSL Certificate is a wild character certificate which supports multiple Sub Domains of Spectrum.Pitneybowes.com and it works fine for them over the URL and other applications .

However it's not working in SAP , kindly advice.

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies
Matt_Fraser
Active Contributor
‎2019 Aug 01 3:43 PM

Hi Vishwam,

I've slightly changed the tags on your question, as "Security" is clearly the primary issue you are trying to solve, and "logging of RFC and web services" is more about collecting trace files. Although you've already got one of the top experts on the case with you in Samuli, but the new tag may attract the attention of others besides, as well as making this more visible to others with the same issue in the future who may be interested in the ultimate solution.

Cheers,
Matt Fraser
SAP Community Moderator

View Entire Topic
SamuliKaski
Active Participant
‎2019 Jul 31 1:12 PM
0 Likes

In that case, I would increase the ICM trace level to 2 or even 3, reproduce, decrease the ICM trace level back to 1 and then analyze the trace. There will be a reason for the SSL handshake to fail. I assume this is a client environment? You could check with their network administrator if they have some sort of SSL decrypting firewall that might explain the SSL handshake failing (the target sees it as man-in-the-middle attack).

Show replies
Show replies
Former Member
‎2019 Aug 01 8:35 AM
0 Likes

Hi Samuli

I increased the Trace level to 3 and I am attaching the ICM Logs , however I could not correlate much to identify the issue that why the SSL Certificate is not working.

I am attaching the logs.

Thanks

smicm-logs.txt
Ask a Question