Unable to integrate SDP MSP with Analytics Plus after applying SSL

Unable to integrate SDP MSP with Analytics Plus after applying SSL


Note: This problem occurs only with self signed certificates in Analytics Plus.

Issue:
[10:23:16:526]|[09-05-2020]|[SYSERR]|[INFO]|[68]|: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target|


Error:
SDP MSP: FAILURE :Error in establishing communication with ManageEngine Analytics Plus server. Please verify your host, port details
OPM : Initial Sync Failed

SDP MSP Troubleshooting:
When the integration is done, Servicedesk Plus MSP will communicate with Analytics Plus and if does not have valid certificate, error occurs. You can confirm it by trying to upload sample csv data using <ServiceDesk Plus MSP home>\zreports\uploadtool\bin\CSVUploadGUI.bat, and if it prompts same error then its an issue with certificate.

Troubleshooting:
1.      Download the attachment (certdgeneration.zip) and extract it under <ServiceDesk Plus MSP Home>

2.     Edit gencert.bat by replacing "D:\ZOHO\jre7\bin\java" with "<ServiceDesk Plus MSP Home>\jre\bin\java"

3.     Open cmd as Administrator and execute as below,
            gencert.bat <Analytics Plus server hostname or IP>:<Port> 

4.      You will be prompted with below message if the certificate is already trusted.
            Enter certificate to add to trusted keystore or 'q' to quit: [1]

5.      Enter 1 and hit Enter.

6.      After successful execution, you will be prompted as below with servername,
            For Eg: Added certificate to keystore 'jssecacerts' using alias 'Dinesh-1556-1'

7.     File 'jssecacerts' will be created under <ServiceDesk Plus MSP home>

8.    Take a backup of the existing jssecacerts file  found under <ServiceDesk Plus MSP home>\ jre\lib\security\and replace with the renamed file.

9.   Restart ServiceDesk Plus MSP service.


For Linux:

1. Download the attached 'lincertgeneration' zip file and extract in ../ManageEngine/ServiceDesk Plus MSP directory.

    After extraction you should find the below files.,

    gencert.sh under  ../ManageEngine/ServiceDesk Plus MSP

    Cert.jar should be under  ../ManageEngine/ServiceDesk Plus MSP/lib directory.


2. Connect to the console and goto  ../ManageEngine/ServiceDesk Plus MSP and execute the command line with the below syntax.

 ../ManageEngine/ServiceDesk Plus MSP]#sh gencert.sh AnalyticsPlusServer:portnumber

Example:../ManageEngine/ServiceDesk Plus MSP]#sh gencert.sh AnalyticsPlus:8443


3. When you run the command You would receive an exception PKIX, and then it would ask to enter a value, enter '1', it will generate a file named 'jssecacerts' under ../ManageEngine/ServiceDesk Plus MSP.


4. Move the 'jssecacerts' to the location  ../ManageEngine/Servicedesk/jre/lib/security folder and then restart the ServiceDesk Plus MSP.

      New to ADSelfService Plus?

        Resources

            • Related Articles

            • Unable to integrate ServiceDesk Plus with Analytics Plus after applying SSL

              Note: This problem occurs only with self signed certificates in Analytics Plus. Issue: [10:23:16:526]|[09-05-2016]|[SYSERR]|[INFO]|[68]|: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: ...
            • Move Analytics Plus from one Server/folder

              Go to Start --> Services.msc and stop the ManageEngine Analytics Plus service. Take a backup of the entire <Analytics Plus_Home> directory and then move it to the new server.  On the new server, navigate to (similar path) <Analytics Plus_Home>\bin ...
            • Unable to sync between Servicedesk Plus and Analytics Plus - ATKey error

              Issue: Unable to configure integration/sync between ServiceDesk Plus and Analytics Plus ERROR Message: FAILURE :Not able to get ATKey from Server. You can obtain the error log files from Support tab by clicking on the Support File link in the ...
            • Unable to access Analytics Plus after installation

              Issue:  Unable to access Analytics Plus after installation even though the wrapper logs are fine. Analysis: There is a space character after the port number in the URL construction. Log Traces: java.lang.IllegalArgumentException: Invalid uri ...
            • Unable to integrate with OpManager

              Issue: When trying to integrate Analytics Plus with OpManager, REST API would show as failed, though the connectivity is fine. Log trace on Analytics Plus Serverout: Aplus build  :Below 3250 OPM Build : 12.3.007 Error: ...