path validation and/or revocation checking failed. Caused by: Certificate

Article Id: 142080

Status: Published

Updated On: 10-01-2020 18:32

Products:

CA API Gateway , API SECURITY , CA API Gateway Precision API Monitoring Module for API Gateway (Layer 7) , CA API Gateway Enterprise Service Manager (Layer 7) , STARTER PACK-7 , CA Microgateway

Issue/Introduction:

Portal template sync fails in angleapi.dev.ca.com from gateway.

This behavior occurred after enrolled another gateway in portal (which I've since removed).

2019-12-18T12:30:00.129-0500 WARNING 157 com.l7tech.server.policy.assertion.ServerHttpRoutingAssertion: 4042: Problem routing to https://sync-apim-domain-prod.app.prod.e1.dev.ca.com:443/sync/apiFragments?identifier=f9942ddc-e504-4aa8-bc11-0ba2f360e0c6&nodeId=16aaf020-5f5a-4c66-b0ae-d9c8f1a95340. Error msg: Unable to obtain HTTP response from https://sync-apim-domain-prod.app.prod.e1.dev.ca.com:443/sync/apiFragments?identifier=f9942ddc-e504-4aa8-bc11-0ba2f360e0c6&nodeId=16aaf020-5f5a-4c66-b0ae-d9c8f1a95340: java.security.cert.CertificateException: Certificate [cn=*.master.net,ou=domain control validated] path validation and/or revocation checking failed. Caused by: Certificate [cn=*.master.net,ou=domain control validated] path validation and/or revocation checking failed

Cause:

DNS TTL wrongly defined

Environment:

Release : 9.4

Component : API GTW ENTERPRISE MANAGER

Resolution:

Resolved by configuring DNS TTL accordingly

Additional Information:

https://ca-broadcom.wolkenservicedesk.com/external/article?articleId=129710

https://ca-broadcom.wolkenservicedesk.com/external/article?articleId=12118