Hi René,
Thanks for your attention.
Actually, the authentication method is "Client Side Authentication", so I have to use the certificates given to me by the Web Service Server administrator (cacerts.pem and signedcert.pem).
Anyway, I tried without doing anything. It doesn't work
I found a page on Genesys's support site (Solution Search) which discuss this subject but it's incomplete. Here's the text :
[quote]
[b]Problem Description :[/b]
Cannot access web service from WebService block over HTTPS.
Getting error:
SSL verify error or warning with certificate at depth 0: unable to get local issuer certificate
[/quote]
[quote]
[b]Troubleshooting techniques :[/b]
In log file configured by http_log_file option look for the following error message:
SSL verify error or warning with certificate at depth 0: unable to get local issuer certificate
certificate issuer /C=US/O=Equifax Secure Inc./CN=Equifax Secure Global eBusiness CA-1
certificate subject /C=AU/O=*.flybuys.com.au/OU=GT65380933/OU=See href="blabla">blabla/resources/cps (c)08/OU=Domain Control Validated - RapidSSL(R)/CN=*.flybuys.com.au
04/23/09@10:17:39.877">04/23/09@10:17:39.877: ERROR: Ref 27347 (SOAP): SOAP Fault, faultcode: 'SOAP-ENV:Client', faultstring: 'SSL_ERROR_SSL
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed', faultsubcode 'SOAP-ENV:Client', faultdetail 'SSL connect failed in tcp_connect()'
[/quote]
[quote]
[b]Root cause :[/b]
HTTP Bridge can't verify the certificate of the Certificate Authority, which issued the certificate to the Web Service.
[/quote]
[quote]
[b]Solution :[/b]
- Obtain current public certificate for the Certificate Authority (Base-64 encoded X.509) as indicated by error:
certificate issuer /C=US/O=Equifax Secure Inc./CN=Equifax Secure Global eBusiness CA-1
- Add this public certificate to the end of file "cacert.pem" (all lines between BEGIN CERTIFICATE and END CERTIFICATE lines including those lines themselves). This file is located in URS installation directory.
[/quote]
Regards,
--
FlashOX
