We are using a SOAP receiver channel (HTTP) in PI 7.1. We have imported the SSL certificate into the TrustedCAs keystore of the NWA. The certificate is NOT expired. We are getting this error. The only thing I noticed is the Subject Name/CN has a wildcard (*) in it and therefore doesn't match the URL exactly. I have read the CN must equal the URL address. Will it work with a wildcard? Why else could I be receiving this error?
SOAP: error occured: com.sap.engine.interfaces.messaging.api.exception.MessagingException: iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier
Adapter Framework caught exception: iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier
Delivering the message to the application using connection SOAP_http://sap.com/xi/XI/System failed, due to: com.sap.engine.interfaces.messaging.api.exception.MessagingException: iaik.security.ssl.SSLCertificateException: Peer certificate rejected by ChainVerifier.