SOAP service SSL hand shake exception after upgrade
SummaryAfter upgrading from PRPC 6.2 SP2 to Pega 7.1.8, when Pega application is trying to connect to SOAP service through 2 way SSL, user is getting SSL handshake exception.
It works fine if user configure keystore at CONNECT SOAP rule level.
User expectation is to have Pega use keystore and trustore defined at app server level as adding them at rule level adds maintenance overhead.
Also, certificate configuration on new JVMs is exactly same as old ones.
com.pega.pegarules.pub.services.ResourceUnavailableException: SOAP service failed
javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
Steps to ReproduceConnect to SOAP service through 2 way SSL without rule level keystore and truststore value in WS security profile.
Root CauseA defect in Pegasystems’ code or rules.
SSLUtils module is not reading truststore and keystore from the Websphere application server cell level.
ResolutionApply HFix-34655 to resolve the issue.
Published May 24, 2017 - Updated June 9, 2017