0 Replies Latest reply: Oct 10, 2012 7:33 AM by 931759 RSS

    Error on Invalid certificate serial number while configuring mutual SSL

    931759
      Hi Guys,

      I encounter this error(refer below) while running the EAI Outbound Body proxy.I'm currently trying to do outbound web service with a third party who uses SSL.
      Base on oracle support I have followed on how to import the CA certs and also I have added this two parameters in my outbound body proxy.


      siebel_transport_param:HTTPCertAuthority  = "CN=Siebel Test,OU=Oracle"
      siebel_transport_param:HTTPCertSerialNo =11223344

      I hit error:SBL-EAI-04116: HTTP Internet Exception during 'Data Send': 'The connection with the server was reset', code: '12031'
      When I check log file it says,


      Switched transport service direction to: 'Outbound'
      Error     Error     1     0000069e4f9a4e03:0     2012-04-27 19:55:30     Invalid certificate serial number ?11223344

      EAITransport     EAITransportDebug     4     0000069e4f9a4e03:0     2012-04-27 19:55:30     Could not load the client certificate
      EAITransport     EAITransportDebug     4     0000069e4f9a4e03:0     2012-04-27 19:55:30     *** HTTP Transport Parameters:
      EAITransport     EAITransportDebug     4     0000069e4f9a4e03:0     2012-04-27 19:55:30     Request URL = https://Uknown/Uknown.asmx
      EAITransport     EAITransportDebug     4     0000069e4f9a4e03:0     2012-04-27 19:55:30     Request Method = POST
      EAITransport     EAITransportGeneric     3     0000069e4f9a4e03:0     2012-04-27 19:55:30     Dropped old connection and creating new connection for 'Request'
      Error     Error     1     0000069e4f9a4e03:0     2012-04-27 19:55:30     Invalid certificate serial number ?11223344

      EAITransport     EAITransportDebug     4     0000069e4f9a4e03:0     2012-04-27 19:55:30     Could not load the client certificate


      I try verify again the cert I imported and it says
      Serial Number : 11 22 33 44
      Issuer : CN=Siebel Test,OU=Oracle

      Guys, do you know what I'm missing?
      1) I have already check my inbound parameter do not have white spaces like this => 11223344
      2) I have added this double quatation in my HTTPCertAuthority because I suspected is required for Issuer with space value.
      3) When I try import from Siebel it put the cert into intermediate certificaiton tab but when I import to IE it went to other people tab. Is this expected ?

      The cert is working when I try import it to IE and when to this URL:https://Uknown/Uknown.asmx

      Thanks for reading,
      I hope some guys put some light
      Regards,
      Joey , MY