Email notifications encountering SSL certificate path error
Emails are not being sent by the PRPC system. PRPC is encountering an SSL certificate path exception while attempting to send emails; however, the EmailAccount is NOT configured to use SSL (and is using the default SMTP port - 25).
2014-07-25 10:16:09,202 [j2ee14_ws,maxpri=10]] [ STANDARD] [ App1:01.02.01] (pega_integrationengine_default) ERROR - Unexpected exception caught while trying to send an email message.
javax.mail.MessagingException: Can't send command to SMTP host;
nested exception is:
javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.j: PKIX path building failed: java.security.cert.CertPathBuilderException: unable to find valid certification path to requested target
Steps to Reproduce
The root cause of this problem is a defect in Pegasystems’ code/rules. If the email server PRPC communicates with for email notifications supports STARTTLS for SSL handshakes, PRPC will attempt to make use of the protocol regardless if "Use SSL?" is selected in the Email-Account record. This is problematic when the required certificates are not in place to fully enable this communication.
This issue can be avoided by setting the Dynamic System Setting "Pega-IntSvcs", "Email/DisableSecuritySTARTTLS" to 'true'. Doing so effectively disables the STARTTLS communication for PRPC and prevents the problem from occurring.