Hi Fabrizio,
for whatever reasons MS has sometimes 2 different certificate for the same endpoint, and with different CAs.
Even with SNI enabled your client receives both of them alternatively, which means you have to have both CAs certificates in the CA store.
Perhaps that is the reason you are getting the halted processes. I check then with openssl if the MS server responds with different certs...
Best regards
Manuel
------------------------------
Manuel Frank
Integration Architect
Andreas STIHL AG & Co. KG
Waiblingen
------------------------------
Original Message:
Sent: Mon March 17, 2025 04:28 AM
From: Fabrizio Allegrini
Subject: Oauth2.0 for B2B Mail Client in Sterling B2B Integrator
Hi Andrew,
I have had the same problem and often is still there. To resolve i loaded the CA certificate on Sterling B2b Integrator, the name of the certificate is:
- DigiCert Global Root G2 (root)
and you can download it from this site:
https://www.digicert.com/kb/digicert-root-certificates.htm
I have had it from Microsoft support. I alert you that also after this operation the problem is not out completally, because some proceses keep an halted during the night.
------------------------------
Fabrizio Allegrini
Original Message:
Sent: Wed March 12, 2025 06:28 AM
From: Andrew Plumb
Subject: Oauth2.0 for B2B Mail Client in Sterling B2B Integrator
Hi all,
I'd like to use the oauth2 in Sterling B2B Integrator to access the B2B Mail client to retrieve email using IMAP.
The oauth2.properties file doesn't seem to have anywhere to specify the trusted CA certificates to use when connecting to login.microsoftonline.com to obtain an access token. Is there some way to specify trusted CA certificates ?
------------------------------
Andrew
------------------------------