Support Article
PRGateway Exception: Failed to connect to URL
SA-7995
Summary
You added below custom properties in Websphere console so that WAS uses the updated cacerts trustStore with the new password.
javax.net.ssl.trustStore
"/opt/app/WAS/8.5/bbb/java_1.7_64/jre/lib/security/backup/cacerts.new.password"
javax.net.ssl.trustStorePassword
<password>
After restarting the JVM, IACGatway is unable to connect to Pega application.
Error Messages
PRGateway Exception: Failed to connect to URL: https://<HOST>:<PORT>/prweb/IAC/!MyAPPIssuerFinal/$STANDARD?pyActivity=Data-Portal.ShowDesktop&UserIdentifier=pegauser1&LDAPToken=AQIC5wM2LY4SfcwUcRf5B3bzUcuYNwh9uRsuYyY6ftL8JIk.*AAJTSQACMDIAAlNLABQtODkyNzg0Njk3MzQ2ODgzODY2NAACUzEAAjAx*&ClientMode=Composite
Steps to Reproduce
There is no specific use case to reproduce this issue.
Root Cause
Adding javax.net.ssl.trustStore custom property without specifying javax.net.ssl.keyStore property made Websphere use cacerts trustStore as keyStore incorrectly.
Resolution
Add the following custom properties on Websphere to identify the keyStore:
javax.net.ssl.keyStore=/opt/app/common/certs/ABCDefaultKeyStore.jks
-Djavax.net.ssl.keyStorePassword=<password>
-Djavax.net.ssl.keyStoreType=jks
Published June 12, 2015 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.