Monday, August 21, 2023

Maximo SSL certificate for Integration between Systems

SSL Certificates for Maximo Integrations using Enterprise Service and Publish Channels with an External System using https connection. 

Maximo (or external system) which calls the https service needs to store the SSL certificate on their server to successful connect to the end point. It's usually set up at the start of building the Integration. But, if you encounter the error during the application maintenance, we need to replace the expired certificate with the renewed one in the server. 

Enterprise Service: When External System is connecting to Maximo Web Service URL (https://<hostname>/meaweb_mif/services/EXTERNALSYSTEM_EnterpriseService), it need to have Maximo SSL certificate on their server. If not, we end up in the below error

PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

To resolve the connection issue, we need to extract the Maximo certificate from Web browser and share it with External system.  

Open the Maximo URL, Click on the yellow highlighted lock icon on the address bar
 

Click on "Connection is Secure" option
                                   


Click on Details tab on the Certificate window




Download the SSL certificate and share it to External System for uploading / updating in their server.

Publish Channel/End Point - When Maximo wants to connect an outbound SSL service using HTTP End point or Publish Channel, we need to collect the certificate from external party and upload it to trusted certificates into IBM Websphere (Maximo 7.6.1.x) or WAS Liberty (MAS) where Maximo is hosted. 

If you don't have certificate present in the server, then you might face an below error. 
psdi.util.MXSystemException:BMXAA1482E - The response code received from the HTTP request from endpoint is not successful 

Please collect the SSL certificates from the target endpoint system and upload them into Maximo server

No comments:

Post a Comment