When consuming a web service over HTTPS, the server hosting the web service may be using a self signed certificate (for example, for non productive web services).
To successfully establish the trust relationship, the self signed certificate used on the web server must be added to the trusted root store of the servers that host the Platform Server.
In these situations, when this step isn't done, errors like
Could not establish trust relationship for the SSL/TLS may occur.
Please note that OutSystems servers must have a valid SSL certificate issued by a public Certificate Authority, as described in OutSystems system requirements.
For OutSystems cloud environments check this article instead.
- Open the Microsoft Management Console (Start > MMC);
- Provide the self-signed certificate:
- Choose File > Add/Remove Snap-in;
- in the standalone tab, choose Add;
- choose the Certificates snap-in > Add;
- in the wizard, choose the Computer Account > Local Computer;
- press Finish to end the wizard;
- close the Add/Remove Snap-in dialog;
- Navigate to Certificates (Local Computer);
- choose the Trusted Root Certification Authorities store to import the certificate;
- right click the store and choose All Tasks > Import ;
- Follow the wizard and provide the certificate file you have.
Export the certificate
Export the public certificate to the following path: D:\Certificates:
- Still on the Microsoft Management Console;
- choose Certificates (Local Computer) > select the folder where the certificate was installed > Certificates;
- right-click on the certificate > All Tasks > Export;
- choose to export the certificate without the private key;
- choose the format to be DER encoded binary X.509 (CER);
- save the file into D:\Certificates.
For environments with more than one front-end, these instructions must be followed on all front-end servers.