Skip to main content

The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel in SharePoint 2013 Server environment

Issue

Could not establish trust relationship for the SSL/TLS secure channel with authority

Environment:

SharePoint 2013 Farm with multiple nodes connected to connected to load balancer

have a Service Oriented architecture to connect other services from SharePoint app servers

SharePoint Nodes are connected to  other services using services oriented services using endpoint defined  

Symptoms:

  SharePoint servers are communicate with Remote service using https protocol using   SSL.

When I check the validity of the remote certificate from the browser It depicts it is valid.

Resolution

I took while me to figure this out. It is true it is about the certificate but it is not the  end certificate.

certificate chain is broken in the Intermediate level.

You can find this easily by checking details from Certificate.

Then navigate to Certification Path


You should see these Root and Intermediate as verified. If they are not valid or expired, you will see a warning sign near to the certificate.

How to Resolve

First you need to understand, a bowser or SSL communication to trust the traffic , all certificate change should be valid.

unless you can define your custom code to not to validate.

But,  If it is not valid or expired you need to trust them first in your machines (Root and Intermediate)

So to do that you need to install the Root and Intermediate in your initiator machine. In my case SharePoint servers.

Easiest Method is

you can open the certificate in the browser as I mentioned above and navigate to certification path.

Double clink on the certificate.

Then you will see the details of the certificate.

then go to the details

Go to the Details and click of Copy to file ..


Here you can export the certificate to .cer forma and save it any convenient location.

Then open the mmc console,

and Add certificate using

File–> Add- Remove Snap-In

Here you will prompt to select the location , where you can select the Computer Account.

and then Local Computer.

then Import your saved certificate to ROOT or Intermediate as you want

Labels:

Comments

Post a Comment

Popular posts from this blog

How to Link Two List and Create a combine view in the SharePoint 2010

In this way you can join multiple list together and can create a combine view. for an example assume that you are managing a list for some events. And also you are having a participants in separate list. Thus you want to join the two list and create a composite view. SharePoint 2010 allows you to create this kind of view using  Linked Data Source. in this approach you can create your own custom list in the SharePoint. How to Create a Linked Data source Go to SharePoint designer and  go to the link called data sources. And Click the Linked Data Source button in the ribbon. Then SharePoint designer will prompt following kind of a dialog. In there add two list, that you wan to linked together. I'm adding airline schedule and booking list. those are the two list that i wan to merge. then click next. And it will guide you another screen. it will ask you to select either Merge Merge use to combine list which are having same columns definition. for and example we can s...
32 comments
Read more

How to Improve Workflow Performance in SharePoint Server 2010

SharePoint workflows are getting  slow for several reasons. in my environment I'm having a problem with following performance issues, therefore in my environment i got following problems. When a item added to the library it takes some times to initiate the workflow. Workflow mail generating is not very fast sometimes. Workflows takes more time to process “Due to heavy load, the latest workflow operation has been queued. It will attempt to resume at a later time” is coming sometimes. I had a custom workflow approval web part and it is taking more than 30 seconds to proceed. Work Done I had a custom workflow approval web part and it is taking more than 30 seconds to proceed. here in my custom web part there is the function which is programmatically updating the workflow. SPWorkflowTask.AlterTask(item, data, false) the last parameter mentioning whether it is synchronous asynchronous. if  is it true it it will wait until workflow schedule accept the workflow task. ...
5 comments
Read more

Use Microsoft Sway Integrated with SharePoint Online /SharePoint 2013/2016

Microsoft Sway Microsoft Sway is a great online Presentation and Online Creativity Stack. Why we need Sway Assume that you are about to so a cooperate presentation for your colleagues. what are the options you have Firstly,You can create a PowerPoint presentation which you need a PowerPoint to run and if you want to share you need end users have PowerPoint client for view the deck. Secondly, You can create a simple web pages and share it with users where it can be access from all devices if it is responsive. Microsoft Sway address the second point. How to Access the Sway There are many ways that you can do this. Since I'm trying  use Sway with SharePoint Online; I will describe using SharePoint Online. First Login to the SharePoint Online Office 365 Login | Microsoft Office There You can go to all Apps   Then you can find the Sway as a App in the Menu   Click on the Sway and go the Sway web site. Here you can find standard available temples or you can start from the stre...
Post a Comment
Read more