Bpm to BSM connection over SSL (596 Views)
Reply
Occasional Advisor
Mgibori
Posts: 5
Registered: ‎05-26-2014
Message 1 of 10 (596 Views)

Bpm to BSM connection over SSL

Hello

my set up:

* all in one bsm on iis

* 5 BPM agents

* certificate from an intermediate internal ca - both ca certificates have been imported to both servers keystore and in to windows certificate manager

 

when i set up a new instance in bpm i get - " SiteResponse:  an error when trying to communicate with site 'site1': Problem with the SSL CA certificate "

 

Thank you

Moran Gibori

HP Expert
Javier_Mora
Posts: 95
Registered: ‎12-01-2011
Message 2 of 10 (577 Views)

Re: Bpm to BSM connection over SSL

Hello Moran,

 

Have you confirmed that the certificate was issued correctly?

 

Try for example to open BSM from BPM server to see if you get an error. If you do not have Java, it is ok if you get red X as at least we got response back to access interface.

 

Kind regards,

Javier

Occasional Advisor
Mgibori
Posts: 5
Registered: ‎05-26-2014
Message 3 of 10 (575 Views)

Re: Bpm to BSM connection over SSL

the certificate is issued correctly
the bsm site logs in with out errors

it seems like the ca certificates are supposed to be installed again somewhere
Occasional Advisor
Mgibori
Posts: 5
Registered: ‎05-26-2014
Message 4 of 10 (574 Views)

Re: Bpm to BSM connection over SSL

Where can i find more specific logging of this issue?

HP Expert
Javier_Mora
Posts: 95
Registered: ‎12-01-2011
Message 5 of 10 (551 Views)

Re: Bpm to BSM connection over SSL

Hello,

 

For this connectivity issues, you can refer to BPM workspace folder  log files. Commcenter is the component that manages integration communication.

 

Kind regards,

Javier

Occasional Advisor
Mgibori
Posts: 5
Registered: ‎05-26-2014
Message 6 of 10 (542 Views)

Re: Bpm to BSM connection over SSL

Hello

 the log adds: " error occured in registration to site"

 

tried with selfsigned certificate - imported as ca aswell - same issue

 

any ideas?

HP Expert
Javier_Mora
Posts: 95
Registered: ‎12-01-2011
Message 7 of 10 (540 Views)

Re: Bpm to BSM connection over SSL

Hello,

 

Did you followed the documented steps to import certificates into the servers?

 

I want to make sure we have followed everything as documented.

Can you check if ports 80 and 443 are blocked?

 

Kind regards,

Javier

Occasional Advisor
Mgibori
Posts: 5
Registered: ‎05-26-2014
Message 8 of 10 (532 Views)

Re: Bpm to BSM connection over SSL

i can reach bsm server through web

http://<servername >/topaz

https://<servername>/topaz

 

without any certificate warnings

firewall in both machines is down

instances in http are connecting

Respected Contributor
SonDang
Posts: 197
Registered: ‎05-28-2014
Message 9 of 10 (470 Views)

Re: Bpm to BSM connection over SSL

Hello,

 

Please refer to attached "BSM Hardening Guide", "Chapter 6 - Using SSL with the Business Process Monitor Agent" page 85 to check if any configuration is missing.

 

 

“If you find that this or any post resolves your issue, please be sure to mark it as an accepted solution.”
Advisor
Hirvimies
Posts: 21
Registered: ‎08-27-2012
Message 10 of 10 (457 Views)

Re: Bpm to BSM connection over SSL

Hello,

 

You could also check the name that you have in the certificate (GW server) and the name you have set in the  instance definition (BPM). Are these the same? 

The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.