Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Qlik Open Lakehouse is Now Generally Available! Discover the key highlights and partner resources here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Anonymous
Not applicable
‎2017-06-30 06:48 AM

Can't connect to cloud API requiring an SSL certificate

I've been trying to figure out how to get a SSL certificate to work with Talend.

 

I've tried the following, but keep getting errors:

  1. Importing into cacert in all java paths (x86 and not)
  2. Importing into Keystore.jks in ESB folder path in Talend
  3. Using tSetKeystore to specify path to keystore file
  4. Using tSetKeystore to specify path to .p12 file that cert was extracted from
  5. Using tSetKeystore to specify both TustStore and Keystore paths

I'm able to import the certificate and view in both Chrome and Postman however, using the .p12 file that needs to be selected the first time I connect from any machine so I know the file works. Then I extract the cert and import into the respective keystore and cacert files I mentioned above.

 

I use the same setup in Postman that I've tried with both tRest and the tRestClient, which consists of a basic auth string and the endpoint URL.

 

tRest returns their landing page stating that the certificate has not been imported.

tRestClient returns HTTP 403 Forbidden.


Please help, thanks.

Labels (4)
Labels
341 Views
0 Likes
1 Solution

Accepted Solutions
Anonymous
Not applicable
‎2017-07-01 07:06 AM
Author

Please see this https://stackoverflow.com/questions/11199099/openssl-and-s-client-why-is-a-private-key-required-from...

 

You may need a private key as well.

 

Also, if your server cannot access the internet, to verify the certificate whole trust chain, i.e. access the CA server to validate, then you need to provide the whole trust chain in your truststore.

View solution in original post

341 Views
0 Likes
2 Replies
Anonymous
Not applicable
‎2017-07-01 07:06 AM
Author

Please see this https://stackoverflow.com/questions/11199099/openssl-and-s-client-why-is-a-private-key-required-from...

 

You may need a private key as well.

 

Also, if your server cannot access the internet, to verify the certificate whole trust chain, i.e. access the CA server to validate, then you need to provide the whole trust chain in your truststore.

342 Views
0 Likes
Anonymous
Not applicable
‎2017-07-05 04:48 AM
Author

Thank you very much, I was trying to extract the certificate when they were giving me the P12 file to use. After pointing to the truststore and use the P12 file, the connection worked.

341 Views
0 Likes