- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-07-2021 12:47 AM
Hello Team,
I am using developer edition (Quebec) to test vRealize Automation (vRA) 8.2 integration with Service Now. While trying to add vRA endpoint in service now, it fails with below error in logs:
(added xxxxxxxxxxxxxxxxx intentionaly for hostname)
REST call error found inside vRARegistervRA.generateApiToken: The request failed: Request not sent to uri= https://xxxxxxxxxxxxxxxxxx/csp/gateway/am/api/login?access_token&apiVersion=2019-01-15 : org.apache.commons.httpclient.HttpException: Session contains no certificates - Untrusted
Attached screenshot for reference. Is there a way we can bypass the certificate check and add the endpoint?
I already tried to added the vRA certs as base 64 and DER format in service now certificate option and in the MID server (Windows) I have installed these certificates in trusted root folder.
Any suggestions? Thank you in advance! - Very New to ServiceNow!
Thanks & Regards,
Ravi Kumar S
Solved! Go to Solution.
- Labels:
-
Integrations
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-07-2021 06:20 AM
Fixed the issue! Had to import the vRA certs to MID Server keystore:
Open a command prompt and navigate to the folder containing the JRE keytool .
An example path might be: C:\Program Files(x86)Â\ServiceÂNow\Â\agent\Âjre\Âbin
Enter the following keytool command to import a certificate into the MIDServer's cacerts keystore: keytool -import -alias -file "" -keystore "\agent\Âjre\Âlib\Âsecurity\Âcacerts"
For example, youmight enter: keytool -import -alias MyCA -file "C:\myca.cer" -keystore "C:\Program Files (x86)Â\ServiceÂNow\ÂMIDserver\agent\Âjre\Âlib\Âsecurity\Âcacerts"
Note: Keytool prompts for a certificate password. If the certificate is for a CA, keytool also asks whether to trust the certificate authority. To add a certificate to an instance, see Upload a certificate to an instance . (changeit - default password)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-07-2021 06:20 AM
Fixed the issue! Had to import the vRA certs to MID Server keystore:
Open a command prompt and navigate to the folder containing the JRE keytool .
An example path might be: C:\Program Files(x86)Â\ServiceÂNow\Â\agent\Âjre\Âbin
Enter the following keytool command to import a certificate into the MIDServer's cacerts keystore: keytool -import -alias -file "" -keystore "\agent\Âjre\Âlib\Âsecurity\Âcacerts"
For example, youmight enter: keytool -import -alias MyCA -file "C:\myca.cer" -keystore "C:\Program Files (x86)Â\ServiceÂNow\ÂMIDserver\agent\Âjre\Âlib\Âsecurity\Âcacerts"
Note: Keytool prompts for a certificate password. If the certificate is for a CA, keytool also asks whether to trust the certificate authority. To add a certificate to an instance, see Upload a certificate to an instance . (changeit - default password)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎05-11-2022 11:04 AM
Wow that is seems common issue - I got the same and it fixed!
Thank yoU!!!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎07-25-2022 02:18 PM
I've done the above steps and still receive same error "untrusted cert" any thoughts?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-09-2022 02:19 AM
You probably still miss some of the certificates on the chain. Have a look here to understand how to troubleshoot or how to manage MID server security policies override that are specific for you endpoint.
