How to turn off SSL certificate validation?

View Only

Back to discussions

Expand all | Collapse all

How to turn off SSL certificate validation?

Jump to Best Answer

1. How to turn off SSL certificate validation?

0 Recommend
Tushar_Ranjan2904
Posted Jun 06, 2018 04:21 PM

Reply Reply Privately
I have a https REST api which doesn't have any authorization. It works fine in postman when I turn off the SSL Certification Validation. Is there a way to turn off in DevTest?
2. Re: How to turn off SSL certificate validation?
Best Answer

0 Recommend
Broadcom Employee

Mike_Gavaghan
Posted Jun 06, 2018 04:27 PM

Reply Reply Privately
Hi Tushar,

DevTest does not perform any validation of the host certificate. You won't need to do anything.

--Mike
3. Re: How to turn off SSL certificate validation?

0 Recommend
Tushar_Ranjan2904
Posted Jun 07, 2018 09:10 AM

Reply Reply Privately
I am getting this error when I am trying curl

error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure
4. Re: How to turn off SSL certificate validation?

0 Recommend
Broadcom Employee

Mike_Gavaghan
Posted Jun 07, 2018 11:26 AM

Reply Reply Privately
Is the remote server performing client authentication (also called 2-way SSL)? You may need to provide a client certificate.

Also, try this: In Workstation, go to Help -> HTTP/SSL Debug. This will open a debug window detailing the handshake process. This will indicate more precisely why the failure is occurring.

--Mike
5. Re: How to turn off SSL certificate validation?

0 Recommend
Broadcom Employee

Mike_Gavaghan
Posted Jun 07, 2018 11:44 AM

Reply Reply Privately
Here's something else to try. Put this in local.properties:

https.protocols=SSLv3

By default, DevTest is configured to use all versions of SSL. The server might be rejecting the one DevTest selects. The above setting causes DevTest to always use v3.

https://docops.ca.com/devtest-solutions/10-4/en/administering/security/ssl-tls-protocol-configuration

--Mike
6. RE: Re: How to turn off SSL certificate validation?

0 Recommend
Koshy M D
Posted Mar 23, 2020 12:54 AM

Reply Reply Privately
Hi Mike,

We have made the inclusion of -Dhttps.protocols=TLSv1.2,TLSv1.1,TLSv1,SSLv3 in the vmoption files inside bin folder. But still the SSL handshake is not happening. can you please let me know how we can bypass this?

------------------------------
Regards,
Koshi M D
+61 421132637
------------------------------

Original Message
7. RE: Re: How to turn off SSL certificate validation?

0 Recommend
Danny Saro
Posted Mar 23, 2020 03:02 AM

Reply Reply Privately
Hi,

This is not what Mike suggested. By adding SSLv3 at the end of existing protocols you are still not forcing DevTest to use SSLv3.

Have you tried with

https.protocols=SSLv3

with TLSv1.2,TLSv1.1,TLSv1 removed as suggested?

Cheers,

Danny

::DISCLAIMER::

The contents of this e-mail and any attachment(s) are confidential and intended for the named recipient(s) only. E-mail transmission is not guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or may contain viruses in transmission. The e mail and its contents (with or without referred errors) shall therefore not attach any liability on the originator or HCL or its affiliates. Views or opinions, if any, presented in this email are solely those of the author and may not necessarily reflect the views or opinions of HCL or its affiliates. Any form of reproduction, dissemination, copying, disclosure, modification, distribution and / or publication of this message without the prior written consent of authorized representative of HCL is strictly prohibited. If you have received this email in error please delete it and notify the sender immediately. Before opening any email and/or attachments, please check them for viruses and other defects.

Original Message
8. RE: Re: How to turn off SSL certificate validation?

1 Recommend
Broadcom Employee

Sankar Natarajan
Posted Mar 23, 2020 01:29 PM

Reply Reply Privately
Hi Tushar
Please enable SSL Debug in workstation and share the SSL Handshake to diagnose what may be causing the problem.

As someone has already mentioned, DevTest does not validate the SSL Server certificate of your end point. Having said that, in case if your SSL server is configured to seek a client certificate, DevTest would return the certificate pointed by the following property:

ssl.client.cert.path

You may find this property defined in local.properties or site.properties or lisa.properties.You may try commenting out this property and check if you are able to hit the endpoint.

If the result is still the same, please share SSL Debug logs from workstation.

--
regards
Sankar Natarajan

Original Message

Service Virtualization

How to turn off SSL certificate validation?

Tushar_Ranjan2904Jun 06, 2018 04:21 PM

Mike_GavaghanJun 06, 2018 04:27 PMBest Answer

Tushar_Ranjan2904Jun 07, 2018 09:10 AM

Mike_GavaghanJun 07, 2018 11:26 AM

Mike_GavaghanJun 07, 2018 11:44 AM

Koshy M DMar 23, 2020 12:54 AM

Danny SaroMar 23, 2020 03:02 AM

Sankar NatarajanMar 23, 2020 01:29 PM

1. How to turn off SSL certificate validation?

2. Re: How to turn off SSL certificate validation? Best Answer

3. Re: How to turn off SSL certificate validation?

4. Re: How to turn off SSL certificate validation?

5. Re: How to turn off SSL certificate validation?

6. RE: Re: How to turn off SSL certificate validation?

7. RE: Re: How to turn off SSL certificate validation?

8. RE: Re: How to turn off SSL certificate validation?

2. Re: How to turn off SSL certificate validation?
Best Answer