Today, I tested this on one of my test domains and getting 521 error, even on SSL Full mode with origin CA certificate. But this is working well,if I’m using self-signed certificate. So, I think, the issue could be something with certificate installation. My domain is reports.s2sacademy.co.uk.
Basically, I have generated two files as part of origin ca certificates- .p7b and .key.
I went through the installation steps provided but no where, it is mentioning about making use of .key file. The steps I followed during certificate installation is as below:
-
Created keystore as follows:
C:\tibco\tss\10.4.0\jdk\bin\keytool -genkey -alias s2sacademy.co.uk -keyalg RSA -keysize 2048 -keystore report.s2sacademy.co.uk.jks -
Tried to import certificate as below, but returned an error:
C:\tibco\tss\10.4.0\jdk\bin\keytool -import -alias s2sacademy.co.uk -file C:\SSL\s2sacademy.co.uk.p7b -keystore report.s2sacademy.co.uk.jks
Error returned here: Input not an X.509 certficate
- Converted .p7b into appropriate format, which is a .cer file and replaced new file in the previous command
Please let me know, if anything I missed.