OpenID Azure Authentication security stopped working

Troubleshooting

Problem

Testing Microsoft Azure namespace in cognos configuration fails with error :

"java.security.cert.CertPathValidatorException: The certificate issued by CN=DigiCert Global Root G2, OU=www.digicert.com, O=DigiCert Inc, C=US is not trusted; internal cause is:
java.security.cert.CertPathValidatorException: Certificate chaining error"

Cause

The chain of certificate is not imported correctly

It only imported "DigiCert Global Root CA" and "DigiCert SHA2 Secure Server GA" into the Cognos CAM keystore but during Azure OIDC authentication is requesting SSL Handshake with "CN=DigiCert Global Root G2"

Environment

Windows Server 2016
Microsoft Azure

Resolving The Problem

Verify the steps using the guidelines below to import new Cognos server SSL certificates, import Cognos server and root SSL certificates to Microsoft Azure.

HOW TO: Enable Third-Party certificate authority in Cognos Analytics 11.1+ using a pre-existing certificate and private key pair
https://www.ibm.com/support/pages/node/6523666

How to import a certificate for Java keystore using Java keytool and iKeyMan
https://www.ibm.com/support/pages/node/6610391

Configuring Azure OIDC in Cognos Analytics
https://www.ibm.com/support/pages/configuring-azure-oidc-cognos-analytics

Document Location

Worldwide

[{"Type":"MASTER","Line of Business":{"code":"LOB10","label":"Data and AI"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSTSF6","label":"IBM Cognos Analytics"},"ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]

Tips

OpenID Azure Authentication security stopped working

Troubleshooting

Problem

Cause

Environment

Resolving The Problem

Document Location

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?