Disconnection from Policy Manager
search cancel

Disconnection from Policy Manager


Article ID: 131354


Updated On:


STARTER PACK-7 CA Rapid App Security CA API Gateway


Shortly after connecting to the API Gateway, you are kicked out of the connection with the following error: 

"The SSL/TLS handshake with the Gateway has failed: Path does not chain with any of the trust anchors."


Component: APIGTW


The issue is that the same policy manager was being used to connect to two different API gateway clusters that had the same CN value for the default SSL certificate. The CN was the same between the two clusters but the serial number didn't match. The Policy manager only has one trust store and can only hold one certificate per CN.


You can:

1) Use the same default SSL certificate chain between the two clusters if desired
2) After the error occurs, reconnect again to the same server but expect the issue to occur when you attempt to connect to the other cluster. 
3) Use different workstations to connect to each environment