ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
Disconnection from Policy Manager
Article ID: 131354
STARTER PACK-7CA Rapid App SecurityCA API Gateway
Shortly after connecting to the API Gateway, you are kicked out of the connection with the following error:
"The SSL/TLS handshake with the Gateway has failed: Path does not chain with any of the trust anchors."
The issue is that the same policy manager was being used to connect to two different API gateway clusters that had the same CN value for the default SSL certificate. The CN was the same between the two clusters but the serial number didn't match. The Policy manager only has one trust store and can only hold one certificate per CN.
Release: Component: APIGTW
1) Use the same default SSL certificate chain between the two clusters if desired 2) After the error occurs, reconnect again to the same server but expect the issue to occur when you attempt to connect to the other cluster. 3) Use different workstations to connect to each environment