Failed to release an email using Flex Response with SMG Brightmail
search cancel

Failed to release an email using Flex Response with SMG Brightmail

book

Article ID: 159387

calendar_today

Updated On:

Products

Data Loss Prevention Network Prevent for Email Data Loss Prevention Enforce Messaging Gateway

Issue/Introduction

When you open an incident and release the email using a Flex Response rule you got an error:

FlexResponse Action Failed 
[Email Quarantine Connect Approve Action] failed with message: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

The same error is showed in DLP Tomcat log.

 

Resolution

The error is due to the client certificate used by DLP not being properly configured in Messaging Gateway.

This issue may be resolved by importing the correct certificate into Messaging Gateway via the Control Center Administration  > Certificates > Applications page as described in Importing an application certificate and ensuring that DLP trusts the TLS certificate used by the SMG Control Center web application.

Note: you may need to restart Control Center on SMG to apply the changes after importing the Enforce certificate.

 

 

Attachments

Brightmail_cert.JPG get_app