When using SSL, it is imperative that the SBM server components can verify trusted status of an SSL certificate. This could be any URL or web service that communicates via SSL/HTTPS, such as a secure mail server or an orchestration endpoint etc. To verify the trusted status of a certificate, you must put all the certificate authority (CA) public keys from the certificate signing chain into the trusted certificate store. For
SyncWorkflowWithReply Unable to get ALF SSO credentials for user 'jsmith' You will see this error with a synchronous orchestration even if you don't use SSO Promotions and deploys fail with errors such as:ERROR -- Failed to obtain security token: Web Services "http:// /gsoap/gsoap_ssl.dll?sbminternalservices72" returned an error: "soap_wsse_verify_X509"
This error is caused by the certificate used by the secure https site not being included in the JBoss Java keystore. See this article S140385 for a tool you can run on the JBoss server to see if the certificate is trusted . See this article S139798 for more on how to import the appropriate certificates into the Java keystore.