Support Article
Error trying to call a webservice protected by mutual ssl
SA-34460
Summary
Attempting to invoke a webservice with mutually-authenticated SSL does not work.
Single-sided SSL is functioning after allowing trust managers.
Error Messages
handshake_failure - see logs
Steps to Reproduce
Make webservice call to service protected by mutual ssl.
Root Cause
There are some known issue in Pega hosted on websphere application server.
Pega doesn't pick up the certificates and keypair configured at the Websphere Cell/node level.
Resolution
Create a security profile with keystore and truststore in the Pega SOAP connector level. This resolves the issue.
Published March 17, 2017 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.