My speculation is that my IBMi job has something cached and a change on the remote side is rendering my cache invalid.
I'm not explicitly doing any profile swapping. That being said, my CGI jobs do run as a named user. The job User is QTMHHTTP and the Job user identify is one of my service profiles.
I have a commercial exit point security package, but I don't think it has any SSL exit programs. If you have specific exit points in mind, let me know and I can check them.
Thanks
-----Original Message-----
From: Bradley Stone [mailto:bvstone@xxxxxxxxx]
Sent: Tuesday, September 18, 2018 5:58 PM
To: RPG programming on the IBM i / System i <rpg400-l@xxxxxxxxxxxx>
Subject: Re: HTTPAPI & revoked SSL cert
I would put money on they changed something on their end, then. Try turning off strict SSL in HTTPAPI if you haven't to see if that changes anything.
If they have a server farm and it's the situation I had with MS and it's taking a while to propagate the new cert, you'll randomly get this error.
And maybe eventually always get it.
Funny thing is, I would think HTTPAPI would report a more specific error.
Searching your error I found:
http://www.scottklement.com/archives/ftpapi/201502/msg00001.html
Seems to indicate it could be authority to the cert store, but I don't see how that could be a random thing.
And also:
http://www.scottklement.com/archives/ftpapi/201607/msg00022.html
Another question, are you doing any user profile swapping in your application? Do you have any exit programs for SSL in place?
midrange.com
