function readOnly(count){ }
Sign Up ›
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
Learn More

Browse by Topic
ShowAll Questionssorted byDate Posted
+ Start a Discussion
IGCTOIGCTO 

Unable to find valid certification path to requested target

We purchased an EssentialSSLWildcard certificate which is an intermediate certificate (3 intermediate certificates).  We have installed AddTrustExternalCARoot certificate from Comodo as well as the necessary intermediate certificates on both IIS and Windows Azure.  The thumbprint of the root certificate matches the thumbprint of the addtrustexternalca  certificate listed as the second certificate http://wiki.developerforce.com/page/Outbound_Messaging_SSL_CA_Certificates#addtrustexternalca

 

All intermediate certificates are installed properly:
http://www.sslshopper.com/ssl-checker.html#hostname=app.fantasysalesteam.com 

 

But we still get the error when trying to connect to our web service from Salesforce "unable to find valid certification path to requested target".  

 

It seems that Salesforce is not finding the path to the root certificate.

 

--------------------------

I have now determined that the certification path was to a different Comodo root certicate than the one I was provided.  I removed the old one from IIS and recreated the pfx file for uploading to Azure.

 

 

 

 

_Prasu__Prasu_
Checkout following thread for answer:
http://forums.sforce.com/t5/General-Development/PKIX-path-building-failed/td-p/128332

http://raydehler.com/cloud/clod/salesforce-callouts-and-invalid-ssl-certs.html
IGCTOIGCTO

I just edited my post and it is clear that we have a root certificate that is on the list and that we have properly installed all intermediate certificates.  So the issue appears to be with Salesforce.
ZjamZjam
could you please advise if you manage to resolve this and what are required steps  for https on iis manager ?