Skip to Main Content
Forums

Integration

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Not able to hit ssl enabled endpoint through OSB 11.1.1.6.0. How to fix?

3289228Aug 2 2016 — edited Aug 3 2016

Hi Friends,

I am struggling with an strange issue where I have to call an 1-way SSL enabled service for calling a couple of operation but the endpoint always gives SSL handshake error even if I have made all the needful configurations from my end. Whereas I can hit it's operations without any issue using SoapUI.

Below is the endpoint and it runs over internet. One can test using SoapUI easily just by importing the wsdl and placing request to any given list operations using SoapUI

https://axiomprotect.mollatech.com:7443/MobileTrustv2Service/MobileTrustv2InterfaceImpl?wsdl

I have made below steps to make a call to the above service:-

  1. Opened WSDL in browser (IE) and downloaded the certificate2) Created a custom keystore in a folder using below command and using CN=localhost

    keytool -genkeypair -keyalg RSA -alias localadmin -keystore adminkeystore.jks -storepass welcome1 -validity 360 -keysize 2048

  2. Added the certificate (downloaded in Step-1) in the keystore (created in Step-2) using below command

    keytool -import -keystore adminkeystore.jks -storepass welcome1 -file axiomprotect.mollatech.com.crt -alias axiomcert1

  3. Created a Business Service with authentication 'None' which is pointing to the above WSDL

  4. Created a Proxy Service using authentication 'None' and 'Https Required' option as 'enabled'

  5. Selected 'Custom Identity and Custom Trust' in OSBAdminconsole->OSBDomain->AdminServer->Keystores

and also set the path and password (same which was used while creating keystore) for keystores and Trusts

pastedImage_2.png

  1. Went to OSBAdminconsole->OSBDomain->AdminServer->SSL

    and configured with the PrivateKeyAlias as "localadmin" (the one which I had used while creating the keystore)

  2. Also put 'None' for "Hostname Verification" option and checked the option "Use JSSE SSL"

  3. I have repeated the same (Step-6 and 7) for "OSB_Server1" managed server

  4. In 'General' tab of 'AdminServer' I have enabled "SSL Listen Port Enabled" check and given port 7002

  5. In 'General' tab of 'Osb-Server1' also I have enabled "SSL Listen Port Enabled" check and given port 7005

  6. Now my proxy runs on https but once I test it given "Handshake Failure" soap fault.

Can anyone please check and help me out for the same. As far as the steps and concerned, I think I have followed all the needful steps here. If I have missed something somewhere please let me know. I really need to close this asap!

Thanks in advance!
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Aug 31 2016
Added on Aug 2 2016
#soa-process-management, #soa-suite-discusssions, #ssl
2 comments
617 views