"Peer not authenticated" error invoking REST call from PX policy

book

Article ID: 5155

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Risk Analytics CA Secure Cloud SaaS - Arcot A-OK (WebFort) CLOUDMINDER ADVANCED AUTHENTICATION CA Secure Cloud SaaS - Advanced Authentication CA Secure Cloud SaaS - Identity Management CA Secure Cloud SaaS - Single Sign On

Issue/Introduction

Invoking a REST call from a browser (URL) running on the Identity Manager server returns a successful response.  Making the same REST call from SoapUI running on the Identity Manager server is also successful.  However when invoking the request from Policy Xpress the following error occurs: 

"Failed invoking REST operation " which was caused by "peer not authenticated".

Environment

Release:
Component: IDMGR

Resolution

If there are multiple copies of Java on the system, the SSL certificate used to authenticate to the REST web service may be not be in the correct location for use by Identity Manager.  Import the SSL certificate used into the Java keystore used by the Identity Manager application server.  For example, on JBoss, if JAVA_HOME is configured as "C:\Program Files\Java\jdk1.8.0_111", use the keytool utility to import the certificate to "C:\Program Files\Java\jdk1.8.0_111\jre\lib\security\cacerts".