path validation and/or revocation checking failed. Caused by: Certificate

book

Article ID: 142080

calendar_today

Updated On:

Products

CA API Gateway API SECURITY CA API Gateway Precision API Monitoring Module for API Gateway (Layer 7) CA API Gateway Enterprise Service Manager (Layer 7) STARTER PACK-7 CA Microgateway

Issue/Introduction

Portal template sync fails in angleapi.dev.ca.com from gateway.

This behavior occurred after enrolled another gateway in portal (which I've since removed). 

2019-12-18T12:30:00.129-0500 WARNING 157 com.l7tech.server.policy.assertion.ServerHttpRoutingAssertion: 4042: Problem routing to https://sync-apim-domain-prod.app.prod.e1.dev.ca.com:443/sync/apiFragments?identifier=f9942ddc-e504-4aa8-bc11-0ba2f360e0c6&nodeId=16aaf020-5f5a-4c66-b0ae-d9c8f1a95340. Error msg: Unable to obtain HTTP response from https://sync-apim-domain-prod.app.prod.e1.dev.ca.com:443/sync/apiFragments?identifier=f9942ddc-e504-4aa8-bc11-0ba2f360e0c6&nodeId=16aaf020-5f5a-4c66-b0ae-d9c8f1a95340: java.security.cert.CertificateException: Certificate [cn=*.master.net,ou=domain control validated] path validation and/or revocation checking failed. Caused by: Certificate [cn=*.master.net,ou=domain control validated] path validation and/or revocation checking failed

Cause

DNS TTL wrongly defined

Environment

Release : 9.4

Component : API GTW ENTERPRISE MANAGER

Resolution

Resolved by configuring DNS TTL accordingly

Additional Information

https://ca-broadcom.wolkenservicedesk.com/external/article?articleId=129710

https://ca-broadcom.wolkenservicedesk.com/external/article?articleId=12118