search cancel

Route failing for Restman target

book

Article ID: 256735

calendar_today

Updated On:

Products

CA API Gateway

Issue/Introduction

I'm trying to retrieve certificate soon to expire via a policy assertion. I attempted to grab the subject name from the resource under rest management (https://<gateway hostname>:8443/restman/1.0/trustedCertificates). I am passing the credentials withing the route but each time I get an "Authenticated Fail" message. Could I get a few possibilities why this is occurring?

mainpart = {String} "<?xml version="1.0" encoding="UTF-8"?>
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
    <soapenv:Body>
        <soapenv:Fault>
            <faultcode>soapenv:Server</faultcode>
            <faultstring>Policy Falsified</faultstring>
            <faultactor>https://<gateway hostname>:8443/restman/1.0/trustedCertificates</faultactor>
            <detail>
                <l7:policyResult status="Authentication Failed" xmlns:l7="http://www.layer7tech.com/ws/policy/fault"/>
            </detail>
        </soapenv:Fault>
    </soapenv:Body>
</soapenv:Envelope>

 

Environment

Release : 10.1

Cause

The RESTMAN service is called from their route on the same Gateway.  The Authorization Header is set with the expected value however when the request routes to the RESTMAN service the assertions that is satisfied is the “Required SSL or TLS Transport with Client Certificate Authentication” assertions this fails authentication 

Resolution

Workaround:

Choose "Use no private key" option for Route Assertion, and the customer was able to get response using https://${gateway.cluster.hostname}:8443

Right click on the route to Select Private Key option 

 

Switch by clicking  "Use no private key"