Skip to main content

This content has been archived and is no longer being updated. Links may not function; however, this content may be relevant to outdated versions of the product.

Support Article

Email notifications encountering SSL certificate path error

SA-425

Summary



Emails are not being sent by the PRPC system. PRPC is encountering an SSL certificate path exception while attempting to send emails; however, the EmailAccount is NOT configured to use SSL (and is using the default SMTP port - 25).

Error Messages



2014-07-25 10:16:09,202 [j2ee14_ws,maxpri=10]] [ STANDARD] [ App1:01.02.01] (pega_integrationengine_default) ERROR - Unexpected exception caught while trying to send an email message.
javax.mail.MessagingException: Can't send command to SMTP host;
nested exception is:
javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.j: PKIX path building failed: java.security.cert.CertPathBuilderException: unable to find valid certification path to requested target


Steps to Reproduce



Unknown


Root Cause



The root cause of this problem is a defect in Pegasystems’ code/rules. If the email server PRPC communicates with for email notifications supports STARTTLS for SSL handshakes, PRPC will attempt to make use of the protocol regardless if "Use SSL?" is selected in the Email-Account record. This is problematic when the required certificates are not in place to fully enable this communication. 



Resolution



This issue can be avoided by 
setting the Dynamic System Setting "Pega-IntSvcs", "Email/DisableSecuritySTARTTLS" to 'true'. Doing so effectively disables the STARTTLS communication for PRPC and prevents the problem from occurring. 
Suggest Edit

Published March 17, 2016 - Updated October 8, 2020

Did you find this content helpful? Yes No

100% found this useful

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.

We'd prefer it if you saw us at our best.

Pega Community has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice
Contact us