We had a SSL issue with VA 7.0 or 7.1 (before BMC bought it). I am not sure how much if any of the code is the same these days?
The Java code within VA was very picky about certificates and having a completely valid certificate chain. Our configuration is Apache web server (httpd) which is a proxy to Tomcat using AJP. As a refresher I just looked at the document I created for my team on the issue: Issue: CNS events updates are not being received and chat DVF fields are not updating with new entries when CNS web server is using Extended Validation certificates for SSL Cause: Apache web server did not have the Intermediate CA Certificate chain configured. Java (used by CNS) could not validate the certificate chain therefore failing to make the connection. Resolution Summary: Download Intermediate CA Certificates from VeriSign and configure Apache utilize the certificate file. On Tue, Aug 23, 2016 at 7:02 AM Stone, Brian <brian.st...@njvc.com> wrote: > If you are running a version older than 9.x there was an issue with Https > and self signed certs. > > ________________________________ > From: Action Request System discussion list(ARSList) [arslist@ARSLIST.ORG] > on behalf of BradRemedy [bradrem...@gmail.com] > Sent: Tuesday, August 23, 2016 9:17 AM > To: arslist@ARSLIST.ORG > Subject: Virtual Agent + IIS and HTTPS > > ** > Hi > > Need some urgent help please. > > Has anyone been successful in getting Virtual agent to work with HTTPS ? > > Our mid tier server is running IIS and Apache (standard configuration) > with a SSL cert binded to HTTPS. We have installed Virtual Agent and > specified HTTPS as the protocol with port 443. The installation completed > with no errors however, when we try to access Virtual agent, we get a error > message. > > For testing, I am using the URL we are using is "https:// > <website>/eschat/?" > > I would assume that Virtual agent would share the configuration of IIS > (Mid tier config) however it doesn't appear so. > > The mid tier pages are all working great. > > really interested if anyone has gotten this working or for any advice. > > Thanks in advance. > Brad > > > _ARSlist: "Where the Answers Are" and have been for 20 years_ > > > _______________________________________________________________________________ > UNSUBSCRIBE or access ARSlist Archives at www.arslist.org > "Where the Answers Are, and have been for 20 years" > _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org "Where the Answers Are, and have been for 20 years"
