Support Article

Error trying to call a webservice protected by mutual ssl

SA-34460

Summary



Attempting to invoke a webservice with mutually-authenticated SSL does not work.

​Single-sided SSL is functioning after allowing trust managers.


Error Messages



handshake_failure - see logs


Steps to Reproduce



Make webservice call to service protected by mutual ssl.


Root Cause



There are some known issue in Pega hosted on websphere application server.

Pega doesn't pick up the certificates and keypair configured at the Websphere Cell/node level.

Resolution



Create a security profile with keystore and truststore in the Pega SOAP connector level. This resolves the issue.

Published March 2, 2017 - Updated March 17, 2017


100% found this useful

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.