SAP Knowledge Base Article - Preview

3574634 - OAuth2 based authentications via Security Material in Cloud Integration fails with error 'unable to find valid certification path'

Symptom

In Cloud Integration, via security material, the following OAuth2 based authentications can be configured: 

  • OAuth2 Client Credentials
  • OAuth2 SAML Bearer Assertion
  • OAuth2 Authorization Code 

Using any of them in outbound TLS based adapter configuration in a Cloud Integration flow and below error happens: 

sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

Important to note, that the HTTP based target endpoint configured in the adapter can be accessed via TLS , meaning the target server trusts the CPI client. Validate this by using Connectivity Test functionality of Cloud Integration under TLS tab with Valid Server Certificate Required checkbox enabled. If this works fine to the target endpoint it means the SSL connection is working between CPI and target server. 


Read more...

Environment

Cloud Integration

SAP Integration Suite

Product

Cloud Integration all versions ; SAP Integration Suite all versions

Keywords

OAuth2 Client Credentials, OAuth2 SAML Bearer Assertion, OAuth2 Authorization Code, outbound, TLS, Cloud Integration, communication, fails, error, sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target, unable to find valid certification path, PKIX path building, Token Service URL, https, security material, , KBA , LOD-HCI-PI-CON-SOAP , SOAP Adapter , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.