• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2265
  • Last Modified:

Sharepoint 2010 SSL Certificate error

Our group is attempting to use some custom code with our new SharePoint 2010 installation.

Specifically this:
http://msdn.microsoft.com/en-us/magazine/ff797985.aspx

The installation is one node with SSL enabled, and an external SQL database.  We have one primary issue, and a secondary issue which we believe may be related.

1. After a successful upload and deployment of a custom visual web part, usage of the part results in a certificate error.  Initially, the error was the following:

An unexpected error has occurred.
Troubleshoot issues with Microsoft SharePoint Foundation.
Correlation ID: df0ef392-29b7-4d46-bdac-6f8a46e86454

After enabling verbose errors, this is the result form the client attempting to run the code attached to the visual web part:

The remote certificate is invalid according to the validation procedure.
Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

Exception Details: System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.

Source Error:

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.  

Stack Trace:


[AuthenticationException: The remote certificate is invalid according to the validation procedure.]
   System.Net.Security.SslState.StartSendAuthResetSignal(ProtocolToken message, AsyncProtocolRequest asyncRequest, Exception exception) +2343888
   System.Net.Security.SslState.ProcessReceivedBlob(Byte[] buffer, Int32 count, AsyncProtocolRequest asyncRequest) +86
   System.Net.Security.SslState.StartReceiveBlob(Byte[] buffer, AsyncProtocolRequest asyncRequest) +123
   System.Net.Security.SslState.ProcessReceivedBlob(Byte[] buffer, Int32 count, AsyncProtocolRequest asyncRequest) +86
   System.Net.Security.SslState.StartReceiveBlob(Byte[] buffer, AsyncProtocolRequest asyncRequest) +123
   System.Net.Security.SslState.ProcessReceivedBlob(Byte[] buffer, Int32 count, AsyncProtocolRequest asyncRequest) +86
   System.Net.Security.SslState.StartReceiveBlob(Byte[] buffer, AsyncProtocolRequest asyncRequest) +123
   System.Net.Security.SslState.ForceAuthentication(Boolean receiveFirst, Byte[] buffer, AsyncProtocolRequest asyncRequest) +7243141
   System.Net.Security.SslState.ProcessAuthentication(LazyAsyncResult lazyResult) +217
   System.Threading.ExecutionContext.runTryCode(Object userData) +376
   System.Runtime.CompilerServices.RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(TryCode code, CleanupCode backoutCode, Object userData) +0
   System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state) +98
   System.Net.TlsStream.ProcessAuthentication(LazyAsyncResult result) +1134
   System.Net.TlsStream.Write(Byte[] buffer, Int32 offset, Int32 size) +88
   System.Net.PooledStream.Write(Byte[] buffer, Int32 offset, Int32 size) +20
   System.Net.ConnectStream.WriteHeaders(Boolean async) +360

[WebException: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.]
   System.Net.HttpWebRequest.GetResponse() +1126
   Microsoft.SharePoint.Client.SPWebRequestExecutor.Execute() +55
   Microsoft.SharePoint.Client.File.SaveBinary(ClientContext context, String serverRelativeUrl, Stream stream, String etag, Boolean overwriteIfExists, SaveBinaryCheckMode checkMode) +1586
   Microsoft.SharePoint.Client.File.SaveBinaryDirect(ClientContext context, String serverRelativeUrl, Stream stream, Boolean overwriteIfExists) +25
   DocumentMerge.VisualWebPart1.VisualWebPart1.OnSubmitClick(Object sender, EventArgs e) +2406
   System.Web.UI.WebControls.Button.OnClick(EventArgs e) +115
   System.Web.UI.WebControls.Button.RaisePostBackEvent(String eventArgument) +140
   System.Web.UI.Page.RaisePostBackEvent(IPostBackEventHandler sourceControl, String eventArgument) +29
   System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +2981

 

We also ran a system.trace.net but during the attempt to monitor the results the connection just timed out.  

2. The secondary issue which we believe may be related is that whenever we attempt to configure Send To connections for content organizer rules, URL validation fails.  

In both cases, these configurations work on our development server which does not have SSL enabled.  It also uses a SQL Express server installed locally.  Due to the disparity in installs, it makes narrowing down issues difficult.  Any assistance is appreciated.
0
RustyHann
Asked:
RustyHann
  • 3
1 Solution
 
MrKrimesCommented:
Have you purchased a SSL cert from a source like verisign? I would start there unless you are running your own in house certificate store. Once this is done you will need to make sure that the server hosting the SQL DB has the public key so that it can communicate with the Sharepoint server or install and instance of SQL locally like you have done before.
0
 
RustyHannAuthor Commented:
Thank you for the quick answer-

We will be adding a certificate to our SQL server for Sharepoint 2010 and other needs.  We will proceed with that ahead of schedule and report back on how it works.

Note - we have Sharepoint 2010 set up as a farm installation with an external SQL server.
0
 
RustyHannAuthor Commented:
I am sorry for the long delay, it took a while to add a security certificate to the SQL server because it supports more than SharePoint.  Everything seems to be working fine.
0
 
RustyHannAuthor Commented:
It took a while to implement the solution because the database we were implementing it on supports more than SharePoint. Once we ironed out the details for complete system integration, this solution worked well.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now