hostname in certificate didn't match:<>!=<> WSO2 APIM

Question

I have a https endpoint and I need to access it from wso2 API manager. (uses 1.10).I already added the certificate files to "client-truststore.jks" file. But now it gives an error as follows.

 hostname in certificate didn't match:<ip>!=<entry name>.

I have already updated the axis2.xml file as follows also.

<parameter name="HostnameVerifier">AllowAll</parameter>

How can I solve this issue with WSO2 APIManager to access this https backend service

Have you set above AllowAll to listener or sender? You need to do this for HTTPS**Sender. — Abimaran Kugathasan, Oct 05 '16 at 10:05

score 1 · Answer 1 · answered Oct 05 '16 at 08:32

1

The CN of the certificate should match with the hostname of the URL. You get above error when they don't match.

answered Oct 05 '16 at 08:32

Bee

11,225
8
39
68

is that means, entry name should be same as the ip address? because this API doesnt have any dns mapping – Anushka Ekanayake Oct 05 '16 at 08:47
I don't think you can create a certificate with an IP for the CN. So you'll have to use a DNS mapping. In your dev environment, you can simply use `/etc/hosts` for this. – Bee Oct 05 '16 at 09:33
what do you mean by "you can simply use /etc/hosts for this" – Anushka Ekanayake Oct 05 '16 at 09:34
You can set a DNS mapping in that file (if you run on linux/ubuntu) – Bee Oct 05 '16 at 09:37
ohh, but i'm working on windows. isnt there any other way of resolving this error? – Anushka Ekanayake Oct 05 '16 at 09:38
Try this https://blog.kowalczyk.info/article/10c/Local-DNS-modifications-on-Windows-etchosts-equi.html – Bee Oct 05 '16 at 09:40
You may also request a brand new cert after including that hostname/entity name or IP in cert's Subject Alternative Names list. – J D Oct 07 '16 at 04:38

hostname in certificate didn't match:<>!=<> WSO2 APIM

1 Answers1

Linked