This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 97%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Unable to bypass the certificate validation when trying to access APIs from a web application which has its own certification
Hi All,
I m facing issue when I m trying to access a Service management API to create/ fetch a ticket through my web application "XYZ" which has its own certificate.
When I try to access the same GET POST APIs from Postman or C# Console app, I am able to create the tickets & fetch them.
I have tried to bypass the certificate validation using following code.
ServicePointManager.ServerCertificateValidationCallback += (sender, cert, chain, sslPolicyErrors) => true;
Still the web application tries to do the SSL validation.
Here is the code:
var client = new HttpClient();
ServicePointManager.ServerCertificateValidationCallback += (sender, cert, chain, sslPolicyErrors) => true;
var request = new HttpRequestMessage(HttpMethod.Post, "https://abc.com:31234/bsmc/rest/events/XYZ");
var content = new StringContent("{"assigned_group":" +
"{"obm_group_uuid":"uniqueID"}," +
""related_ci_hints":{"hint":"Consensus Cloud Solutions - SST (ENT)"}," +
""original_id":"test run id","Id":null,"title":"Failed script to handle the exception"," +
""description":"Error connecting to meditech.Initialized Logger at 4/25/2024 7:59:55 AM Time out:454342"," +
""severity":"MINOR","application":"XYZ"," +
""groupId":null,"configItem":null,"category":"","sub_category":""}", null,
"application/json");
request.Content = content;
var response = await client.SendAsync(request);
response.EnsureSuccessStatusCode();
This code throws exception of Certificate mismatch.
The SSL connection could not be established, see inner exception.
The remote certificate is invalid according to the validation procedure: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
at System.Net.Security.SslStream.SendAuthResetSignal(ProtocolToken message, ExceptionDispatchInfo exception)
at System.Net.Security.SslStream.CompleteHandshake(SslAuthenticationOptions sslAuthenticationOptions)
at System.Net.Security.SslStream.<ForceAuthenticationAsync>d__175`1.MoveNext()
at System.Net.Security.SslStream.<ProcessAuthenticationWithTelemetryAsync>d__172.MoveNext()
at System.Net.Http.ConnectHelper.<EstablishSslConnectionAsync>d__2.MoveNext()
For the above issue. I have added the self-signed certificate "https://abc.com:31234/bsmc/rest/events/XYZ" POST API to the certificates & added the user defined certificate validation using x509 certificate & X509 Chain errors. I was able to pass through the certificate mismatch error. But the response from the POST & GET API is success OK 200. There is no ticket generated in the service management.
Can anyone help me with this certificate mismatch issue or let me know how we can access the APIs in a web application(which already has its own certificates)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 36%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELH%3C/text%3E%3C/svg%3E)
Hi @nitar_prof,
According to Microsoft's official documentation, the ServicePointManager class is obselete now. You can try using the following code:
HttpClientHandler clientHandler = new HttpClientHandler();
clientHandler.ServerCertificateCustomValidationCallback = (sender, cert, chain, sslPolicyErrors) => { return true; };
// Pass the handler to httpclient(from you are calling api)
HttpClient client = new HttpClient(clientHandler);
If I understand correctly PostMan works as expected and creates a ticket but HttpClient does not. That means there is a problem with your code.
The StringContent code you've posted has a bunch of error and does not compile. It seems you are not sharing the actual code.
var content = new StringContent("{\"assigned_group\":" +
"{\"obm_group_uuid\":\"uniqueID\"}," +
"\"related_ci_hints\":{\"hint\":\"Consensus Cloud Solutions - SST(ENT)\"}," +
"\"original_id\":\"test run id\",\"Id\":null,\"title\":\"Failed script to handle the exception\"," +
"\"description\":\"Error connecting to meditech.Initialized Logger at 4/25/2024 7:59:55 AM Time out:454342\"," +
"\"severity\":\"MINOR\",\"application\":\"XYZ\"," +
"\"groupId\":null,\"configItem\":null,\"category\":\"\",\"sub_category\":\"\"}", null,
"application/json");
A standard approach is using strong type (C# class) not a JSON string. Usually the API has documentation that allows you to build the class. Based on your JSON the class has the following shape. It may or may not be what the API expects.
public class Rootobject
{
public Assigned_Group assigned_group { get; set; }
public Related_Ci_Hints related_ci_hints { get; set; }
public string original_id { get; set; }
public object Id { get; set; }
public string title { get; set; }
public string description { get; set; }
public string severity { get; set; }
public string application { get; set; }
public object groupId { get; set; }
public object configItem { get; set; }
public string category { get; set; }
public string sub_category { get; set; }
}
public class Assigned_Group
{
public string obm_group_uuid { get; set; }
}
public class Related_Ci_Hints
{
public string hint { get; set; }
}
Thanks for the answers. Converting the Json to strongly typed class, it worked.