Repo - Solr SSLcommunication

cancel
Showing results for 
Search instead for 
Did you mean: 
Keiner
Customer

Repo - Solr SSLcommunication

I configured the MTLS communication between solr and repo in my docker locally and that works fine. When I moved to the environment we have is where I'm having issues with the certificates. The containers are in Kubernetes and solr is a container as well as the repository.

WARN (org.alfresco.solr.AlfrescoCoreAdminHandler@36b6964d_Worker-33) [ ] o.a.s.t.CommitTracker Rollback performed due to ACL Tracker error
10/12/2022 7:40:10 AM javax.net.ssl.SSLHandshakeException: PKIX path validation failed: java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors
10/12/2022 7:40:10 AM at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:131)...........
 
I generated the keystores for my local environment. I'm thinking that could be the issue since solr container has its own host name and repo as well.
 
Is that the reason why certificates work in local but not in kubernetes?
 
Thanks
1 Reply
angelborroy
Alfresco Employee

Re: Repo - Solr SSLcommunication

Validate that SOLR side truststore is configured properly in solrcore.properties

Hyland Developer Evangelist