PriyaVasudevan
commented
2 years ago For SSL connectivity in DB:
security = {
ssl = {
trustStore = {
storeLocation = ""
trustJavaCACerts = false
trustedCertDir = ""
}
keyStore = {
storeLocation = ""
}
}
}
use trustedCertDir to pass the certs you want to trust along with default java trust certs and set trustJavaCACerts to true
App Server throws error during starting. Hence OMS Sterling apps are not coming..
[ERROR ] CWPKI0823E: SSL HANDSHAKE FAILURE: A signer with SubjectDN [CN=*.bpe60pbd01oinge4psd0.databases.appdomain.cloud, O=International Business Machines Corporation, L=Armonk, ST=New York, C=US] was sent from the host [52.117.144.18:32626]. The signer might need to be added to local trust store [/opt/ibm/wlp/usr/servers/defaultServer/tls.p12], located in SSL configuration alias [defaultSSLSettings]. The extended error message from the SSL handshake exception is: [unable to find valid certification path to requested target].