/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
The SSL error message "Failed to verify peer certificate. Peer not trusted." is observed on the ICM trace file (dev_icm) when the SAP ALM is activated.
The ICM trace file shows that the instance is trying to connect to the SAP Host Agent HTTPS port (port number 1129) on the local server:
[Thr ...] ASYNC_RFC Tzzz_Uyyy_M0, [client], [ALM user], [local server name], time=19:42:22, Wxx, program=SAPMSSY1, low priority, memory=0, tasks=2, appl info=, tcode=
[Thr ...] role: Client, protocol: HTTPS, local: [local server IP address]:[random client port], peer: [local server IP address]:1129
[Thr ...] SSL_get_state()==0x2131 "TLS read server certificate B"
[Thr ...] *** ERROR in secussl_read: SSL_read() lasterr 0x2000051d
[Thr ...] => "Failed to verify peer certificate. Peer not trusted."
It is required to extract the SSL Server Certificate from the SAP Host Agent, so the appropriate SSL trust can be established.
Read more...
Environment
- SAP Host Agent
Product
Keywords
KBA , BC-CCM-HAG , Host Agent , BC-CST , Client/Server Technology , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)