SPS Join fails with SSL Certificate Verify Failed error (326539)

Chat now with support

Return

Feedback submitted.

Was this article helpful?

[Select Rating]

Title

SPS Join fails with SSL Certificate Verify Failed error
Description

When joining SPS to SPP, Join fails due to a certificate error with the following output (note, this may only be in Debug log):
{
"response": "Error sending request: SSLError: HTTPSConnectionPool(host='10.5.34.62', port=443): Max retries exceeded with url: /service/core/v3/Cluster/SessionModules (Caused by SSLError(SSLError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:852)'),))",
"status": null,
"url": "<URL IS UNIQUE TO ENVIRONMENT>"
}
Cause

The Safeguard for Privileged Passwords SSL Certificate may have invalid data in the Authority Key Identifier field.
An example of common, but unaccepted, data in that field is DirName and Serial attributes.
Resolution

Use an SSL Certificate that contains only the key ID of the Issuing Certificate Authority in the Authority Key Identifier field, conforming to IETF RFC 5280, and complying with OpenSSL and Mozilla policy.
Including any other information in that field will result in Join failure.
There may be other causes and will be noted here in the future.

Feedback submitted.

Was this article helpful?

[Select Rating]

Title