Service Virtualization

I am getting the following error connecting to MQ v 8. from DevTest Workstation 10.4. 

I have the  intermediate certificate in my .jks file.  I don't want to request a copy of the public certificate from the MQ team is there anyway to turn off certificate validation in DevTest?


ProcDlgThreadCallbk@7004ce4e, SEND TLSv1.2 ALERT: fatal, description = certificate_unknown


2019-08-26 22:09:51,413Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - ProcDlgThreadCallbk@7004ce4e, SEND TLSv1.2 ALERT: fatal, description = certificate_unknown
2019-08-26 22:09:51,413Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - ProcDlgThreadCallbk@7004ce4e, WRITE: TLSv1.2 Alert, length = 2
2019-08-26 22:09:51,414Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - [Raw write]: length = 7
2019-08-26 22:09:51,414Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - 0000: 15 03 03 00 02 02 2E .......
2019-08-26 22:09:51,414Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - ProcDlgThreadCallbk@7004ce4e, called closeSocket()
2019-08-26 22:09:51,415Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - ProcDlgThreadCallbk@7004ce4e, handling exception: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
2019-08-26 22:09:51,583Z (18:09) [ProcDlgThreadCallbk@7004ce4e] WARN com.itko.lisa.test.LisaException - LisaException detail PublishMQMessage exception is com.ibm.mq.MQException: MQJE001: Completion Code '2', Reason '2397'.
2019-08-26 22:09:51,583Z (18:09) [ProcDlgThreadCallbk@7004ce4e] ERROR com.itko.lisa.test.TestNode - TestNode caught an exception: PublishMQMessage


============================================================================
| Exception:
============================================================================
| Message: PublishMQMessage
----------------------------------------------------------------------------
| Trapped Exception: MQJE001: Completion Code '2', Reason '2397'.
| Trapped Message: com.ibm.mq.MQException: MQJE001: Completion Code '2', Reason '2397'.

Hi Tamika
           If your IBM MQ Server queue manager was configured with SSL, I dont think there is a way to skip trust validation in SSL handshake phase. Can you import the intermediate and root CA's public key certificates into a keystore file and pass it in Queue manager's SSL Context ?


------------------------------
Sankar Natarajan
Service Virtualization Product Engineering Team
Broadcom
------------------------------

Original Message:
Sent: 08-26-2019 06:19 PM
From: tamika moody
Subject: ProcDlgThreadCallbk@7004ce4e, SEND TLSv1.2 ALERT: fatal, description = certificate_unknown

I am getting the following error connecting to MQ v 8. from DevTest Workstation 10.4. 

I have the  intermediate certificate in my .jks file.  I don't want to request a copy of the public certificate from the MQ team is there anyway to turn off certificate validation in DevTest?


ProcDlgThreadCallbk@7004ce4e, SEND TLSv1.2 ALERT: fatal, description = certificate_unknown


2019-08-26 22:09:51,413Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - ProcDlgThreadCallbk@7004ce4e, SEND TLSv1.2 ALERT: fatal, description = certificate_unknown
2019-08-26 22:09:51,413Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - ProcDlgThreadCallbk@7004ce4e, WRITE: TLSv1.2 Alert, length = 2
2019-08-26 22:09:51,414Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - [Raw write]: length = 7
2019-08-26 22:09:51,414Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - 0000: 15 03 03 00 02 02 2E .......
2019-08-26 22:09:51,414Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - ProcDlgThreadCallbk@7004ce4e, called closeSocket()
2019-08-26 22:09:51,415Z (18:09) [ProcDlgThreadCallbk@7004ce4e] INFO System.out - ProcDlgThreadCallbk@7004ce4e, handling exception: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
2019-08-26 22:09:51,583Z (18:09) [ProcDlgThreadCallbk@7004ce4e] WARN com.itko.lisa.test.LisaException - LisaException detail PublishMQMessage exception is com.ibm.mq.MQException: MQJE001: Completion Code '2', Reason '2397'.
2019-08-26 22:09:51,583Z (18:09) [ProcDlgThreadCallbk@7004ce4e] ERROR com.itko.lisa.test.TestNode - TestNode caught an exception: PublishMQMessage


============================================================================
| Exception:
============================================================================
| Message: PublishMQMessage
----------------------------------------------------------------------------
| Trapped Exception: MQJE001: Completion Code '2', Reason '2397'.
| Trapped Message: com.ibm.mq.MQException: MQJE001: Completion Code '2', Reason '2397'.