Could not create SSL/TLS secure channel - Visa Developer Community

link管理

链接快照平台

输入网页链接，自动生成快照
标签化管理网页链接

相关文章推荐

率性的黄瓜 · Error tls: failed to ...· 2 天前 ·

谦逊的帽子 · Tls: failed to verify ...· 2 天前 ·

朝气蓬勃的饼干 · How to format tls ...· 2 天前 ·

善良的稀饭 · Unsuccessful TLS ...· 2 天前 ·

细心的泡面 · Hashicorp Vault : “ ...· 2 天前 ·

谦和的灌汤包 · W10摄像头0xA00F4289和0xA00 ...· 3 月前 ·

谈吐大方的爆米花 · 手机武汉通官方网站--我要办理· 3 月前 ·

爱运动的豌豆 · 教育部全球資訊網--全站搜尋· 3 月前 ·

健身的罐头 · mybatis 子查询模板 - CSDN文库· 3 月前 ·

买醉的闹钟 · sql server 字符串排序 - CSDN文库· 5 月前 ·

Hi JP,
We had similar problem.
Make sure that you create p12 file using command from github "openssl pkcs12 -export -out p12certfile.p12 -inkey key.pem -in cert.pem"

Also add

ServicePointManager.SecurityProtocol = SecurityProtocolType.Ssl3 | SecurityProtocolType.Tls | SecurityProtocolType.Tls11 | SecurityProtocolType.Tls12;

before you connection.
We added it to DoMutualAuthCall method.

It is not cert problem. It is where the ServicePointManager calls are. It has to be right before the request is created. Now it is returning 400 (Bad Request). I didn't change any of the request body. That's strange.

ServicePointManager.Expect100Continue = true;
ServicePointManager.SecurityProtocol = SecurityProtocolType.Ssl3 | SecurityProtocolType.Tls | SecurityProtocolType.Tls11 | SecurityProtocolType.Tls12;
HttpWebRequest request = WebRequest.Create(requestURL) as HttpWebRequest;

Here is my post body:

{ "systemsTraceAuditNumber":350420, "retrievalReferenceNumber":"401010350420", "localTransactionDateTime":"2018-08-09T04:21:19", "acquiringBin":409999, "acquirerCountryCode":"101", "senderAccountNumber":"1234567890123456", "senderCountryCode":"USA", "transactionCurrencyCode":"USD", "senderName":"John Smith", "senderAddress":"44 Market St.", "senderCity":"San Francisco", "senderStateCode":"CA", "recipientName":"Adam Smith", "recipientPrimaryAccountNumber":"4957030420210454", "amount":"112.00", "businessApplicationId":"AA", "transactionIdentifier":234234322342343, "merchantCategoryCode":6012, "sourceOfFundsCode":"03", "cardAcceptor":{ "name":"John Smith", "terminalId":"13655392", "idCode":"VMT200911026070", "address":{ "state":"CA", "county":"081", "country":"USA", "zipCode":"94105" "feeProgramIndicator":"123"

Hi JP,

As suggested by Milioner, Kindly make sure that you create p12 file using command from github "openssl pkcs12 -export -out p12certfile.p12 -inkey key.pem -in cert.pem". Please note the absence of the -certfile attribute. There is a peculiarity with the way the p12 is built for .NET where the file included in -certfile can only contain root certificates.

Kindly share the x-correlation-id from response header and the complete response to troubleshoot further.

Thank you,

Vaibhav

Thank you, Vaibhav! You are right. It is the P12 file problem. I was using openssl installed by Git. Downloaded another version of openssl (1.0.2n) and regenerated the P12 file. Now it is different:

Response Body:
{
"errorMessage" : "API Validation Error: 3001. Transaction to Recipient Card Country is restricted by the Sender Institution "
}

Response Headers:
X-SERVED-BY: l55c012
X-CORRELATION-ID: 1533881655_325_89_l55c012_VDP_ARM
X-Backside-Transport: FAIL FAIL,FAIL FAIL
X-APP-STATUS: 400
X-Application-Error-Code: 3001
X-Global-Transaction-ID: 441431557
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=2592000;includeSubdomains
Pragma: no-cache
Content-Language: en-US
X-Cnection: close,close
Connection: close
Content-Length: 131
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: application/json;charset=UTF-8
Date: Fri, 10 Aug 2018 06:14:15 GMT
Expires: -1
Server: Apache

Hi @JP,

Add the below lines in your code before line 64 inVisaAPIClient.cs and try again.

ServicePointManager.Expect100Continue = true;

ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls12;

Thank you,

Vaibhav