Saml2 error validateArtifactRequester: certificate from client is null

Similar Messages

• HTTP-500 Error Reading Data from Client!!

  I'm trying to create a page where by clients are able to contact us through the portal. So, it's a pretty basic form where I have a text box for the subject, and a text area for the message body.
  My problem is when the message body is over a certain size, I'm getting a "portlet cannot be contacted" on my screen. The Apache log comes up with the error:
  [error] mod_plsql: /pls/portal/!PORTAL.wwpob_page.show HTTP-500 Error Reading Data from Client!!
  I'm not using a windows OS, so the bug that has been talked about previously talked about shouldn't be the problem.
  Also, I am using a POST rather than a GET, so I don't think it has to do with the browser (and I have tested this on Firefox and IE 5.5 and IE 6).
  Would appreciate any advise.
  Thanks, Nicky

  Are you using SSL? Maybe, it has to do with it. I encountered a similar problem. It turned up that this read error occurred inside Apache and was caused by a nonstandard-SSL-request by Internet Explorer. te remedy was to add this to the Apache configuration:
  SetEnvIf     User-Agent     ".*MSIE.*"     \
  nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
  It tells Apache to switch to HTTP/1.0 and to never keep open socket connections with MSIE on SSL connections.
  Lycka till!

• Signing with p12 certificate from client

  Hy there
  Our client provided us with a p12 format certificate and a password for signing AIR Applications.
  When I tried to sign the application in question with the certificate I got the following Error:
  Unable to build a valid certificate chain for the signer.
  What would google do in this situation?
  According to http://www.globalsign.com/support/root-certificate/osroot.php I did the following:
  Install the certificate in Internetexplorer
  Install the GlobalSign ObjectSign CA in Firefox
  Export a new p12 certificate from firefox
  Sign the application again with the new p12 certificate
  Still getting the same error!
  Install the new p12 certificate in Internetexplorer
  Again exporting the cert in Firefox
  and so on...
  No matter what I tried I still got the same error. I am now wondering whether our client needs to sign the application, but this does not seem to make sense since I have a p12 certificate and a password...
  I really would appreciate any help on this matter.
  Kind regards

  According to tzengs suggestion I tried to export the certificate again from firefox using "backup all" instead of "backup" with no effect.
  One thing which I am still not sure of:
  Can my client give me a p12 certificate which I can use as it is to sign my application using the provided password or do I have to process this certificate first?
  Depending on the answer to this question I need to take different action:
  YES: I need to tell my client to export the certificate in a different manner in order to "create the complete chain"
  NO: The certificate from my client is fine but I still need to figure out how to change the certificate so that I don't get the error.
  Thanks for your help.

• Business View Connector Error When Developing from Client PC

  We upgraded from CE10 to BOXI 3.1 using Crystal Reports 2008 with Business Views.  Now when developing a report using a BV working in Crystal Reports 2008 on the server on which the BV resides all works fine; when we use Crystal from a client PC and start Crystal, get a BV from the server repository as a database connection,generate a simple report, running  the program returns no data but error 'Cannot Open Database' appears followed by 'Unknown Database Connector Error'.  Why is behavior from Crystal on a client PC different than when running Crystal on a PC that is remote-desktopped into the server, and what need I do so we can develop Crystal reports based on BVs from client PCs?

  Hello,
  If you edit reports locally you also need the database client and configured on the local PC also.
  When you use Remote Desktop you are using everything installed on that PC. Remoting in all you are doing is passing the screen updates to your local PC and nothing else.
  Oh, and you should likely install the BOE Client tools on your local PC also.
  Thank you
  Don
  Edited by: Don Williams on Dec 24, 2010 1:44 PM

• Error retrieving Certificate from Default JKS in PI 7.1 WAS JAVA

  Hi everyone.
  I'm trying to retrieve a Certificate from the Default JKS of a WAS Java (PI 7.1).
  Java code follows:
  +InitialContext ctx = new InitialContext(ctxProp);               +
  Object o = (Object) ctx.lookup("keystore");
  KeyStoreManager manager = (KeyStoreManager) o;
  KeyStore keyStore = manager.getKeyStore("DEFAULT");
  Certificate ret = ks.getCertificate("ProofCert");
  While executing, following Exception arise:
  incompatible with interface com.sap.aii.security.lib.KeyStoreManager:sap.com/PIC-WRAPPER-FD-EAR-library-loader
  It seems that I need additional libraries:
  I have imported that:
  import java.security.KeyStore;
  import java.security.cert.X509Certificate;
  import com.sap.aii.security.lib.KeyStoreManager;
  //import java.security.cert.Certificate;
  Has anyone some Idea of what is happening? What addiotional libraries I need?
  Java version is 5.
  Regards,

  You need to import the following security libraries:
  \usr\sap\<SID>\DVEBMGS00\j2ee\cluster\bin\ext\com.sap.aii.sec.lib\lib\com.sap.aii.sec.lib_api.jar
  \usr\sap\<SID>\DVEBMGS00\j2ee\cluster\bin\ext\com.sap.aii.sec.lib\lib\private\com.sap.aii.sec.lib_core.jar
  and all the libraries under "security.class".

• Error during IMPDP from Client M/c.

  Hi, i am using Edition Release 11.2.0.3.0 of oracle.
       I want to import a particular database dump to one of other database and (Note:-i dont have access to the physical database server). I am executing the command from my machine(client m/c) only also dump stays in my local folder. i am using below command.
    1)created 'TEMP_DIR' on the target database which points to 'C:\Temp\dump', but dump is not on the server, its on my local m/c, in path C:\Temp\dump.
    2)command:
    impdp system/abc1234@databas1 REMAP_SCHEMA=schema1:schem_new1,schema2:schem_new2 directory=TEMP_DIR dumpfile=abc.DMP logfile=abc.log;
    its giving error
    ORA-39002: invalid operation
  ORA-39070: Unable to open the log file.
  ORA-29283: invalid file operation
  ORA-06512: at "SYS.UTL_FILE", line 536
  ORA-29283: invalid file operation
  Can you please help me , what is the error.

  Hi,
  Data Pump is server-based utility :Overview of Oracle Data Pump
  You can not do what you want to do.
  however you can use NETWORK_LINK between two databases.
  HTH

• Functiontemplate from repository was null   BAPI_ROUTING_CREATE

  Hi all,
  i'm trying to set up communication between a third party sistem and R3 via XI. I'm using BAPI_ROUTING_CREATE but , when i send the XML message (you can read it below),   the rfc adapter starts this exception:
  Delivery of the message to the application using connection RFC_http://sap.com/xi/XI/System failed, due to: com.sap.aii.af.ra.ms.api.RecoverableException: error while processing message to remote system:com.sap.aii.af.rfc.core.client.RfcClientException: functiontemplate from repository was <null>: com.sap.aii.af.rfc.afcommunication.RfcAFWException: error while processing message to remote system:com.sap.aii.af.rfc.core.client.RfcClientException: functiontemplate from repository was <null>.
  I'm sure that the bapi is defined into the R3 system, i checked via se37, and the Communication channel for the BAPI is set properly since it works with other bapis.
  May be someone can help me?
  Best Regards
  Luca
  <rfc:BAPI_ROUTING_CREATE xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:rfc="urn:sap-com:document:sap:rfc:functions">
       <APPLICATION/>
       <BOMUSAGE/>
       <PROFILE/>
       <TESTRUN>
            <BAPIFLAG>' '</BAPIFLAG>
       </TESTRUN>
       <COMPONENTALLOCATION>
            <item>
                 <TASK_LIST_GROUP/>
                 <GROUP_COUNTER/>
                 <SEQUENCE_NO/>
                 <CHANGE_NO/>
                 <VALID_FROM>2009-02-01</VALID_FROM>
                 <CHANGE_NO_TO/>
                 <VALID_TO_DATE>2009-12-31</VALID_TO_DATE>
                 <DEL_IND/>
                 <ACTIVITY/>
                 <OPERATION_ID/>
                 <BOM_TYPE/>
                 <BOM_NO/>
                 <ALTERNATIVE_BOM/>
                 <ITEM_ID/>
                 <ITEM_NO/>
                 <CUTTING_MEASURE_UNIT/>
                 <CUTTING_MEASURE_UNIT_ISO/>
                 <COMP_UNIT/>
                 <COMP_UNIT_ISO/>
                 <BACKFLUSH/>
                 <PLANT/>
                 <MATERIAL/>
                 <BOM_TYPE_ROOT/>
                 <BOM_NO_ROOT/>
                 <ALTERNATIVE_BOM_ROOT/>
            </item>
       </COMPONENTALLOCATION>
       <MATERIALTASKALLOCATION>
            <item>
                 <MATERIAL>A10060</MATERIAL>
                 <PLANT>2000</PLANT>
                 <TASK_LIST_GROUP>50000007</TASK_LIST_GROUP>
                 <GROUP_COUNTER>2</GROUP_COUNTER>
                 <CHANGE_NO/>
                 <VALID_FROM>2009-02-01</VALID_FROM>
                 <CHANGE_NO_TO/>
                 <VALID_TO_DATE>2009-12-31</VALID_TO_DATE>
                 <DEL_IND/>
                 <DOC_NUMBER/>
            </item>
       </MATERIALTASKALLOCATION>
       <OPERATION>
            <item>
                 <TASK_LIST_GROUP>50000007</TASK_LIST_GROUP>
                 <GROUP_COUNTER>2</GROUP_COUNTER>
                 <SEQUENCE_NO>0</SEQUENCE_NO>
                 <CHANGE_NO/>
                 <VALID_FROM>2009-02-01</VALID_FROM>
                 <CHANGE_NO_TO/>
                 <VALID_TO_DATE>2009-12-31</VALID_TO_DATE>
                 <DEL_IND/>
                 <ACTIVITY>0010</ACTIVITY>
                 <OPERATION_ID/>
                 <CONTROL_KEY>PP01</CONTROL_KEY>
                 <OBJ_ID>10000017</OBJ_ID>
                 <OBJECT_TYPE_CIM_RESOURCE>A</OBJECT_TYPE_CIM_RESOURCE>
                 <WORK_CNTR>A4010</WORK_CNTR>
                 <PLANT>2000</PLANT>
                 <STANDARD_TEXT_KEY/>
                 <DESCRIPTION>ASSEMBLY</DESCRIPTION>
                 <OPERATION_MEASURE_UNIT>PC</OPERATION_MEASURE_UNIT>
                 <OPERATION_MEASURE_UNIT_ISO/>
  </rfc:BAPI_ROUTING_CREATE>

  Hi Luca,
  Please see the thread if you havn't yet.. u may get some help
  RFC error
  RfcClientException: functiontemplate from repository was <null>

• Provide steps to send Root CA certificate to the Lync client, getting error" There was a problem verifying certificate from the server"

  Hi,
    I Build an Lync 2013 set up with FEpool, Director pool and Exchange server is integrated. I have windows 8 client machine, with Lync client installed. When I try to login to the lync client, I am getting error like"There was a problem verifying
  certificate from the server".
  When I installed ROOT CA cert  manually on client machine I am able to login to the lync client. similarly if I add my client machine in my domain, I am able to login to the Lync client.
  Now is there any other way to send the certificate automatically to the client machine (Which are NOT part of the DOMAIN) from the server, instead of manual installation process.
  Please help me troubleshoot this problem

  Agree with S Guna, there is no easy way to push a certificate automatically to a client that you don't control other than building an installer package and asking them to run it.  In this situation, if there are a lot of non-domain joined machines
  a third party certificate is the way you need to go.
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
  SWC Unified Communications

• While logon to lync it gives error " there was a problem verifying the certificate from the server "

  i already go through all threads related to my question. but not even one thread is satisfying my question  ok my problem is again the same it gives me error as i mentioned in title. client OS is XP. actually can somebody tell  me which certificate
  i should import in which name of certificate group.
  N ya why error has occur. help me 
  thanks in advance 
  jayesh rohit

  You'll want the CS root certificate in the trusted root certificate authorities area of the machine store (vs the user store).  If there are any subordinate CAs with intermediate certificates, put them in the intermediate certification authorities area. 
  Verify that the certificate has the correct SANs for you server.  Did you generate the certificate from the deployment wizard, did you check the box for the sip domains as you went through the wizard?  Is the certificate internally signed by your
  certificate authority?  Are you attempting to connect internally or externally when you see the issue? 
  Can you confirm that your SRV records for _sipinternaltls._tcp.domain.com have the correct port and hostname and that the hostname is also resolvable?  Can you do the same for _sip._tls.domain.com?
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
  SWC Unified Communications

• Error connecting using JCO.Client: null

  Hi,
  I created a WD app which uses  the RFC FM.  I followed How-To-build-webdynpro.pdf document to create the WD and trying to deploy and run, I see the view page but when I trigger the action via button UI element I get following error as exception in the try catch block of execute method
  In the NWA I see
  Could not create JCOClientConnection for logical System: 'WD_MODELDATA_DEST' - Model
  An exception has occurred: Erorr accessing cache [region]='XCM_SESSION_SCOPE'.
  [EXCEPTION]
  com.sap.isa.core.cache.Cache$Exception: Cannot return access for region 'XCM_SESSION_SCOPE'. Cache is not ready
  I'm using following existing JCO definition by configuring them with correct parameters.  Tested them successfully
  WD_RFC_METADATA_DEST
  WD_MODELDATA_DEST
  What am I missing?  In SM04 tcode I see 2 connections are opened with 2 Megabyte not released for a long time.  I think if connections are released correctly it should drop to 1 megabyte.  Is there anything that I need to do just after execute method as shown below (I have replaced function module with <FM> in below code)
  try {
           wdContext.node<FM>_Input().current<FM>_Get_InputElement().modelObject().execute();
       } catch(Exception exception) {
            msgMgr.reportException(exception.getLocalizedMessage(), false);
        wdContext.nodeOutput().invalidate();
        msgMgr.reportSuccess("Success");
  The error is in the catch block which is displayed on the view page.
  Thanks
  Praveen
  I modified the above code and put in finally block to close the connections as follows, please let me know if this is OK.  I still get error message as "Error connecting using JCO.Client: null" but no additional connections in the SM04 after adding finally block.
  try {
           wdContext.node<FM>_Input().current<FM>_Get_InputElement().modelObject().execute();
       } catch(Exception exception) {
            msgMgr.reportException(exception.getLocalizedMessage(), false);
       }finally {
            // disconnect the connection
            wdContext.<FM>_Get_InputElement().modelObject().modelInstance().disconnectIfAlive();     
  Edited by: Praveen11 on Oct 5, 2009 9:06 AM

  Thanks Satish.
  The issue is resolved.  I think it was to do with permission, as I was running directly from NWDS deploy and run the session didn't have proper authorisation or something that was causing this error.
  When I copy pasted the URL in the correct browser session window I got no error and function module was successfully executed.   However the issue now is that values are not showing up in the view may be to do with mapping context or model  I'll review and post back as different thread.
  Thanks
  Praveen

• Error when connect from portal system (abap ) to external ssl client - sm59

  Hi I am tryign to setup a ssl connection from the abap sm59 portal system to an exteral server.. I have setup the certs that the client has given me in strust.but i m gettign the ffg error.
  sysno      60
  sid        PID
  systemid   370 (Solaris on SPARCV9 CPU)
  relno      7110
  patchlevel 0
  patchno    150
  intno      20020600
  make       multithreaded, Unicode, 64 bit, optimized
  profile    /usr/sap/PID/SYS/profile/PID_DVEBMGS60_pidevdb
  pid        3911
  [Thr 01] Thu Jun 14 08:38:48 2012
  [Thr 01] TRACE FILE TRUNCATED
  [Thr 07] Thu Jun 14 08:39:07 2012
  [Thr 07] *** ERROR during SecudeSSL_SessionStart() from SSL_connect()==SSL_ERROR_SSL
  [Thr 07]    session uses PSE file "/usr/sap/PID/DVEBMGS60/sec/SAPSSLA.pse"
  [Thr 07] SecudeSSL_SessionStart: SSL_connect() failed
  [Thr 07]   secude_error 536871970 (0x20000422) = "SSL record with the wrong SSLPlaintext.version received"
  [Thr 07] >>            Begin of Secude-SSL Errorstack            >>
  [Thr 07] ERROR in ssl3_get_record: (536871970/0x20000422) SSL record with the wrong SSLPlaintext.version received
  [Thr 07] <<            End of Secude-SSL Errorstack
  [Thr 07]   SSL_get_state() returned 0x00002120 "SSLv3 read server hello A"
  [Thr 07]   SSL NI-sock: local=57.24.111.151:34110  peer=57.24.110.116:5081
  [Thr 07] <<- ERROR: SapSSLSessionStart(sssl_hdl=10720d530)==SSSLERR_SSL_CONNECT
  [Thr 07] *** ERROR => IcmConnInitClientSSL: SapSSLSessionStart failed (-57): SSSLERR_SSL_CONNECT {00020a7c} [icxxconn_mt.c 1957]
  When i change the sm59 connection not to use ssl. it give me a pop up screen . and asks me to enter user and password...
  He then  give me a private key file .. i.e a .pfx file but not sure how to load this in strust. I tried to convert in useign sapgenpse. but it fails with teh ffg error
  12% sapgenpse import_p12  -p /usr/sap/PID/amos/amos_client.pse /usr/sap/PID/amos/amos_client_pk.pfx
  import_p12: MISSING password for PKCS#12 file "/usr/sap/PID/amos/amos_client_pk.pfx"
  Please enter PKCS#12 encryption  password: *******
  PKCS#12/PFX file contains 1 keypair:
    1. FriendlyName = "amos.server.interface.webuser.web_int.cert"
       X.509v3 (type=Both) RSA-2048 (signed with sha1WithRsaEncryption)
       Subject="CN=AMOS WebService Interface Client, OU=IT&S MRO, O=South African Airways (Pty) Ltd, L=OR Tambo International Airport, SP=Gauteng, C=ZA"
       Issuer ="[email protected], CN=ca.flysaa.com, OU=Certificate Authority, O=South African Airways (Pty) Ltd, L=OR Tambo International Airport, SP=Gauteng, C=ZA"
  ERROR: Incomplete certification path -- NEED certificate of "[email protected], CN=ca.flysaa.com, OU=Certificate Authority, O=South African Airways (Pty) Ltd, L=OR Tambo International Airport, SP=Gauteng, C=ZA"!
  I have attached a doc of what it looks like.. appreciate any help

  Hi,
  There is an error in the publishing of template
  Template :"bbpsc02" is not publised in ITS.
  Go to T.code: SE80
  Publish all the templates again and check
  Check with your SAP  BASIS team for the help
  Regards
  Ganesh

• WDDynamicRFCExecuteException: Error connecting using JCO.Client: null

  Hi
  This is a common problem,I have seen many threads , but following them did not solve my problem.
  I have the JCOs tested successful from WD Admin. When I create a sample WDJ application with RFC model and deploy it to the server, I get
  Exception:com.sap.tc.webdynpro.modelimpl.dynamicrfc.WDDynamicRFCExecution: Error connecting using JCO.Client: null.
  I have checked my binding , I have only one input parameter and the code is
        wdComponentAPI.getMessageManager().reportSuccess("Inside wdInit in Component ctrller");
        Z_Plm44_Obsoleteimpactanalysis_Input input = new Z_Plm44_Obsoleteimpactanalysis_Input();
       wdContext.nodeZ_Plm_Input().bind(input);
       wdContext.createZ_Plm_InputElement(input).setV_Type(wdContext.currentZ_Plm_InputElement().getV_Type());
  Also I have implemented closing the connection
  disconnectifalive
  I contacted the basis team... they tell me that everything is fine from their end. they have tried increasing the JCO connection pools.
  Thanks for your help in advance
  Karthika

  Hi Karthika
  Check this pdf and try to catch WDDynamicRFCExecution in catch block.
  Please put your code in try catch and also import com.sap.tc.webdynpro.modelimpl.dynamicrfc.WDDynamicRFCExecution in your code;
  http://www.sappro.com/downloads/WebDynproJava.pdf
  Re: User has no RFC authorization for function group.
  Hope this will help you.
  thanks
  Arun Jaiswal

• Error in RFC Receiver Adapter: functiontemplate from repository was null

  Hi Friends,
  i am working on JDBC -> RFC Scenario, JDBC Sender Adapter is working fine, but RFC Receiver Adapter is throwing this error message... can some one help me to solve this issue...
  Message processing failed. Cause: com.sap.aii.af.ra.ms.api.RecoverableException: error while processing message to remote system:com.sap.aii.af.rfc.core.client.RfcClientException: functiontemplate from repository was <null>: com.sap.aii.af.rfc.afcommunication.RfcAFWException: error while processing message to remote system:com.sap.aii.af.rfc.core.client.RfcClientException: functiontemplate from repository was <null>
  Thanks
  Srikanth

  Hi,
  I think the logon details what you are giving in Receiver CC may be wrong. Check all those details like Application Server,System Number,User,Password and client.
  Thanks.

• Server error: "The attempt to read data from the server '(null)' failed"

  Multiple times during each day my client (Mail.app) puts up a little exclamation mark "!" next to the mail account hosted on our Leopard Server. Clicking on this little alert icon pops up a message that reads:
  +There may be a problem with the mail server or network. Verify the settings for account “Leopard Server Account” or try again.+
  +The server returned the error: The attempt to read data from the server “(null)” failed.+
  I can make the "!" go away by choosing Mailbox>Synchronize>Leopard Server Account. And everything seems peachy but it inevitably pops up again in another hour or two. It's annoying because I'm not sure if mail is getting through or not when the "!" is up.
  Any ideas why this is happening?

  MY SOLUTION REPOSTED FROM ANOTHER THREAD:
  I've just solved a similar issue.
  I have a dedicated server running Plesk 9.5 and when I upgraded to iLife 11 and Snow Leopard this error appeared. I could quickly click "get mail" and I'd get all my mail, but only 3-4 of my 9 mail accounts would connect. Theo others would have the error:
  "The server error encountered was: The attempt to read data from the server..."
  I found solutions for those using IMAP mail:
  modify the /etc/courier-imap/imapd configuration file and change MAXDAEMONS from 40 to 80 and MAXPERIP from 4 to 40. This allows all the machines behind my home firewall to connect to multiple accounts on the e-mail server with mailbox caching enabled.
  I'd made this change on my server but it didn't seem to have any effect. It dawned on me that I'm using POP, not IMAP. So I found in /etc/courier-imap/pop3d the same settings. I changed the MAXDAEMONS from 40 to 80 and MAXPERIP from 4 to 40 and voila, all my connections concurrently worked.
  This has taken me more than two days to fix and I hope posting this helps someone else with the same issue.

• Lync 2013 mobile client. Can't verify the certificate from the server. Please contact your support team

  We upgraded Lync Server 2010 to Lync 2013.
  Users are able to login on desktop clients but unable to connect on mobile client. We get following error message:
  Can't verify the certificate from the server.
  Please contact your support team

  Please check the Root CA is installed on your mobile device.
  Can you sign in externally?
  Please check you have updated the DNS records for Lync mobile autodiscover service.
  Lisa Zheng
  TechNet Community Support