Re: BPM having issues connecting to BAC using SSL (519 Views)
Reply
Advisor
Jason Conner
Posts: 35
Registered: ‎03-17-2008
Message 1 of 11 (650 Views)

BPM having issues connecting to BAC using SSL

Im getting either an Internal CURL error or problem with SSL.

Please help!
Please use plain text.
Frequent Advisor
Mufaddal
Posts: 40
Registered: ‎02-18-2008
Message 2 of 11 (647 Views)

Re: BPM having issues connecting to BAC using SSL

Check via browser if you can reach BAC from your BPM machine

try url https:///topaz

Also check proxy settings on your browser and compare with the settings of your instance in BPM
Please use plain text.
Advisor
Jason Conner
Posts: 35
Registered: ‎03-17-2008
Message 3 of 11 (648 Views)

Re: BPM having issues connecting to BAC using SSL

Yes, I can connect to the BAC server from the BPM machine using SSL. It works fine when I use http://
/topaz
Please use plain text.
Frequent Advisor
Mufaddal
Posts: 40
Registered: ‎02-18-2008
Message 4 of 11 (648 Views)

Re: BPM having issues connecting to BAC using SSL

Do you have other BPMs talking to BAC on SSL?

If yes, are they able to send data to BAC
If No, did you configure your BAC to accept communication on SSL?

-Mufaddal
Please use plain text.
Advisor
Jason Conner
Posts: 35
Registered: ‎03-17-2008
Message 5 of 11 (648 Views)

Re: BPM having issues connecting to BAC using SSL

I have BPM running under both: SSL and HTTP. I can logon with SSL and work just fine. I have even exported the SSL Certificate into base 64 coded.cer then I specified the path of the exported certificate as option "SSL authority certificate file" in the BPM Admin interface. I am running BPM 8.02 for Windows. The BAC Server is running under Windows 2003 Server and it is version 8.03 (has all the latest patches).
Please use plain text.
Advisor
Mike Makar
Posts: 18
Registered: ‎08-16-2010
Message 6 of 11 (650 Views)

Re: BPM having issues connecting to BAC using SSL

Did you ever find a resolution to this? I'm running into the same issue. Thanks.
Please use plain text.
Frequent Advisor
10forever
Posts: 47
Registered: ‎04-07-2012
Message 7 of 11 (586 Views)

Re: BPM having issues connecting to BAC using SSL

Hiii,

 

Did someone find a solution for this issue.

 

Thx in advance

Please use plain text.
Advisor
KonstantinovE
Posts: 10
Registered: ‎08-08-2011
Message 8 of 11 (559 Views)

Re: BPM having issues connecting to BAC using SSL

Hi guys,

 

Please share a bit more info on these issue:

1. What kind of error do you get in BPM?

2. What is private key encryption method?

key.png

 

 

3. What chiphers BAC is set to accept?

in apache/conf/exta/httpd-ssl.conf:

cipher.jpg

Thanks,
------------------------------
Evgeniy
HP BSM EUM UKR QA
Please use plain text.
Frequent Advisor
10forever
Posts: 47
Registered: ‎04-07-2012
Message 9 of 11 (555 Views)

Re: BPM having issues connecting to BAC using SSL

Hello,

 

Thx for your reply. I've checked the points that you mention and here is the result : 

 

Signature algorithm : sha1RSA

Signature hash algorithm : sha1

SSLCiphereSuite : the same as yours (ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL)

 

Many thx

 

Please use plain text.
Occasional Advisor
emeabac
Posts: 8
Registered: ‎10-04-2012
Message 10 of 11 (534 Views)

Re: BPM having issues connecting to BAC using SSL

hi , did you found any solution to that, i have the same issue i tried everything !

Please use plain text.
Frequent Advisor
10forever
Posts: 47
Registered: ‎04-07-2012
Message 11 of 11 (519 Views)

Re: BPM having issues connecting to BAC using SSL

Hii,

I need to know some informations before :

 

Can you telnet the port 443 of bsm GW from bpm?

Can you telnet the port 2696 of bpm from bsm?

Have you generated your own certificate using a custom CA (like myca.crt)?

 

If all the answers are yes than :

you have to convert the myca.crt (not the one downloaded from ie) to pem certificate using openssl.

you have to import myca.crt to hp/bpm/jre6/jre/lib/security/cacerts. (the java_home folder is hp/bpm/jre6/jre refering to the logs)

 

Hope it will work for you.

Please use plain text.
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation