SSL Error when calling Functions from Customizations

Mathew · February 9, 2022, 8:23pm

Hello,

I’m needing to call a Function method from a Customization but am hitting the following error:

Inner Exception

The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.

Inner Exception

The remote certificate is invalid according to the validation procedure.

Here is my code calling my function. This is straight from the Epicor User Guide.

		string apiKey = GetAPIKey();
		var restClient = new RestClientBuilder()
		 .SetDefaultApiKey(apiKey)
		 .UseSession(this.oTrans.CoreSession)
		 .Build();

		var funcContent = new RestContent(
			new { 	
<data>
			})
	 	.SetApiKey(apiKey);
	
		var funcResponse = restClient.Function.Post("<FuncLibraryName>", "<FuncMethodName>", funcContent, published: true);

We have a self signed SSL certificate on our server, but since this is being called internally in an Epicor Customization it’s my understanding that that should be fine.

What’s even more confusing is that when I run the customization on the App server I get an “Invalid API Key” error, but when I use the same key using the alternate code provided by Epicor (below, but with correct params) I get the same SSL error as above.

var restClient = new RestClientBuilder()
 .SetAppServerUrl("https://host/ERP10")
 .SetCompanyId("Company")
 .SetDefaultApiKey(ApiKey)
 .UseBasicAuthentication("UserName", "Password")
 .Build();

SSL certification isn’t my strong suite, but everything seems to be setup how Epicor suggests. Any suggestions would be great!

Mark_Wonsil · February 9, 2022, 8:37pm

That will not be fine. If this is a Dev server, you should be able to export the cert (.cer file, not the private key!), and copy it to your computer. Then right click and install the cert and place it in the Current User (not computer) Trusted Root Authority folder.

Test with your browser and the security lock should be on.

Whatever you used as a name for the cert has to match EXACTLY when calling the service.

Security Note: Anything signed on that machine will be now trusted on your login for that machine.

Mathew · February 10, 2022, 9:20pm

Thanks Mark! Thank makes sense.

So I’m guessing that means that for this to work correctly in our Prod environment we need to purchase an SSL Cert?

Mark_Wonsil · February 10, 2022, 9:33pm

There are other options:

What is Active Directory Certificate Services and Why Should I Use It? (globalsign.com)

Topic		Replies	Views
Calling Epicor Functions From Client Customization Gotcha Epicor ERP 10 functions	13	4088	October 27, 2020
RestAPICore 2.2.0.2 issue - The SSL connection could not be established, see inner exception Epicor ERP 10 e10 , epicor , rest , restapicore	3	1375	April 2, 2024
"Attempted to perform an unauthorized operation" error: client side function Epicor ERP 10 functions	55	11148	August 21, 2023
API REST C# A trust relationship can not be established for the secure SSL / TLS channel Epicor ERP 10 customization	14	2174	October 5, 2018
Rest Call Trust Error Epicor ERP 10 e10 , customization , rest	8	941	April 28, 2021

SSL Error when calling Functions from Customizations

Inner Exception

Inner Exception

Related Topics