Chained SSL Certificate Error Messages

The Chained Secure Socket Layer (SSL) is the secure protocol for transmitting data securely using encryption over the web. SSL creates a secure connection between a client and a server, over which any amount of data can be sent; S-HTTP (https) is designed to transmit individual messages securely between a client and a web server.

Call Handling Process for Customers requesting a copy of the FedEx Chained SSL Certificate

If a customer requests a local copy of the FedEx certificate be installed on their configuration, it is available fro download from the Developer Resource Center.
Note: If a customer requests additional technical assistance, outside of downloading the Chained SSL certificate, direct customers to their Server Software Provider. If the customer calls back after consulting with their software provider and it has been discovered that something may be corrupt with the new certificate, agents should follow the current process and escalate the case to Senior Support.

Use call type "SSL Certificate" on any call concerning this issue.

The following error messages are common ones that customer's may experience when the SSL Certificate has been applied to the test and production environments.

Chained Secure Socket Layer (SSL) Error Messages
Possible Customer Error Action
Exception : javax.net.ssl.SSLHandshakeException: unknown certificate Download and install the FedEx gateway certificate and the intermediate VeriSign CA certificate into customer's keystore.
java.security.cert.CertificateException: CA certificate does not include basic constraints extension" error when we try to generate labels. Download and install the FedEx gateway certificate and the intermediate VeriSign CA certificate into customer's keystore.
Exception in FedEx exchange javax.net.ssl.SSLHandshakeException: unknown certificate Download and install the FedEx gateway certificate and the intermediate VeriSign CA certificate into customer's keystore.
java.net.SocketException: Xport: SSL handshake failed: SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed SSL handshake failed Download and install the FedEx gateway certificate and the intermediate VeriSign CA certificate into customer's keystore.
Master VeriSign Certificate does not match Download and install the FedEx gateway certificate and the intermediate VeriSign CA certificate into customer's keystore.
java.security.cert.CertificateException: Unable to parse certificate(s) cannot process input. Potential middleware application problem. Contact vendor of middleware application.
This may show in the customers WebSphere Application log: SystemErr.log

SystemErr: Content is not allowed in prolog.

Download and install the FedEx gateway certificate and the intermediate VeriSign CA certificate into customer's keystore.