I see some errors like:
BEA-090487: UNKNOWN_CA alert received from 1.1.1.1 . The peer is rejecting the certificate chain as being untrusted or incomplete
The doc says:
Warning: UNKNOWN_CA alert received from peer. The peer is rejecting the certificate chain as being untrusted or incomplete.
Description
The certificate chain was not trusted by the peer.
Cause
The peer is not configured to trust the CA that signed the certificate chain.
Action
Review the certificate chain and the peer trusted CA configuration to determine whether the peer should be trusting the certificate chain or whether a new certificate chain is required that is trusted by the peer.
From the HTTP access logs, I discovered that someone hit our HTTP service with a browser which was not trusting our certificate... so the solution is simply add a security exception in the browser.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment