Highlighted
Not applicable
402 views

Error while running the configupdate.sh for UA

Hi

I am getting the below error when i am running the configupdate.sh in User application configuration .
the certificate issued by is not trusted internal cause is certificate chaining error
I have specified all the correct ldap details (Server,port credentials )

any suggestions on what next to be done
Labels (1)
0 Likes
2 Replies
Knowledge Partner
Knowledge Partner

Re: Error while running the configupdate.sh for UA

On 11/23/2016 10:26 AM, CAPVCC SUPPORT wrote:
>
> Hi
>
> I am getting the below error when i am running the configupdate.sh in
> User application configuration .
> *the certificate issued by is not trusted internal cause is certificate
> chaining error*
> I have specified all the correct ldap details (Server,port credentials
> )
>
> any suggestions on what next to be done


Java cacerts (/opt/netiq/idm/apps/jre/lib/security/cacerts) probably
needs the IDV's tree CA public key. (NOT the ldap servers public key,
rather the CA that signed that key's public key, thus when it expires in
2 years and you renew it, it continues to work).

Also add that tree CA public key to the osp and tomcat keystores
(Whatever you use for those). Also make sure the osp and tomcat certs
signers are trusted in all three keystores.

If you need help with Keytool to get this to go, ask, I am too lazy to
retype the commands if you know how already.


0 Likes
Not applicable

Re: Error while running the configupdate.sh for UA

Thanks it worked
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.