报错:The system cannot create a SOAP connector to connect to host *** at port ***
下面还有段caused by:[SOAPException: faultCode=SOAP-ENV:Client; msg=Error opening socket:
javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.g:
PKIX path validation failed: java.security.cert.CertPathValidatorException:
The certificate is not valid until
解决:
IBM官方文档:
Cause
The default chained certificate has problems.
Resolving the problem
In WebSphere Application Server (WAS) version 7, a default chained certificate was introduced as a personal certificate. This certificate was created during profile set up and should be valid for a year. It should be renewed when its validity date expires.
When running ConfigEngine, it acts as a client that connects to the server through SOAP connector. It takes the parameters configured in <wp_profile>/properties/ssl.client.props that points to the key store file containing the default personal certificate and residing at <wp_profile>/etc/key.p12.
To renew the certificate, take the following steps
- Log in to the Integrated Solutions Console as the primary WAS administrative user;
- Navigate to Security > SSL certificate and key management > Key stores and certificates > NodeDefaultKeyStore> Personal certificates;
- Check the box besides "Default", and hit button "Renew". You should see the expiration date now is updated for another year.
- Restart servers.
中文翻过来大意是,SSL证书到期导致的,更新下就好了。
入口在was管控台,安全性--SSL证书和密钥管理--密钥库和证书--NodeDefaultKeyStore--个人证书,勾选“default”那条,单击更新保存后重启。