Skip to main content

Notifications

Dynamics 365 Community / Forums / Finance forum / Could not establish tr...
Finance forum
Suggested answer

Could not establish trust relationship for the SSL/TLS secure channel

editSubscribe (1) ShareShare
ReportReport
Posted on by Community member 8
Hi everyone,
I am trying to call an external web API in d365fo x++ but I am getting an error when I pass the server url and header parameters. The error message is /The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel./ I am wondering if anyone has encountered this error before and knows how to fix it.
Here is my code for calling the external API:
 
 
       System.Net.HttpWebRequest request;
        System.IO.Stream stream;
        System.Exception sysEx;
        System.Net.ServicePointManager::SecurityProtocol=System.Net.SecurityProtocolType::Tls12;
   
        request = System.Net.WebRequest::Create(/url/) as System.Net.HttpWebRequest;
        request.Method = 'POST';
        request.ContentType = 'application/json';
        // Set the request headers
        System.Net.WebHeaderCollection headerCollection = request.Headers;
        headerCollection.Set('Authorization', 'Bearer XXXXXXXXXXXXX');
        var utf8 = System.Text.Encoding::get_UTF8();
  
        // Set the request body
        var byteArrayPayload = utf8.GetBytes(/string value/);
     
     
        try
        {
            // send out the payload
            using (System.IO.Stream dataStream = request.GetRequestStream())
            {
                dataStream.Write(byteArrayPayload, 0, byteArrayPayload.Length);
            }
            using (System.Net.HttpWebResponse response = request.GetResponse() as System.Net.HttpWebResponse)
            {
           
                stream = response.GetResponseStream();
                System.IO.StreamReader reader = new System.IO.StreamReader(stream);
                str responseBody = reader.ReadToEnd();
            }
        }
        catch (sysEx)
        {
            throw;
        }
 
Categories:
Development / Customization / SDK
Install and Upgrade
Retail
  • CU08050810-0 Profile Picture
    CU08050810-0 on at
    Could not establish trust relationship for the SSL/TLS secure channel
    Insta Pro APK is the best Insta Mod Developed By SamMods for Android devices 2024. Instagram Pro Download is the original Instagram mode.
     
  • Community member Profile Picture
    Community member 4 on at
    Could not establish trust relationship for the SSL/TLS secure channel
    Could not establish trust relationship for the SSL/TLS secure channel
     
    To resolve the "Could not establish trust relationship" error, you can try the following:
    1. Ensure the SSL/TLS certificate is valid, properly configured, and up to date on the server
      .
    2. Install the root certificate of the issuing certificate authority on the client machine or add it to the trusted certificate store.
    3. Verify that the hostname in the URL matches the hostname specified in the SSL/TLS certificate
      .
    4. Check the server configuration to ensure all necessary certificates, including intermediate ones, are properly installed..
    5. Update the client and server to use compatible and secure versions of the SSL/TLS protocol, such as TLS 1.2 or higher.
    If the issue persists, it may be necessary to engage with the server administrators or the certificate authority to further diagnose and resolve the problem.
     
  • Community member Profile Picture
    Community member 4 on at
    Could not establish trust relationship for the SSL/TLS secure channel
     
    To resolve the "Could not establish trust relationship" error, you can try the following:
    1. Ensure the SSL/TLS certificate is valid, properly configured, and up to date on the server
      .
    2. Install the root certificate of the issuing certificate authority on the client machine or add it to the trusted certificate store.
    3. Verify that the hostname in the URL matches the hostname specified in the SSL/TLS certificate
      .
    4. Check the server configuration to ensure all necessary certificates, including intermediate ones, are properly installed..
    5. Update the client and server to use compatible and secure versions of the SSL/TLS protocol, such as TLS 1.2 or higher.
    If the issue persists, it may be necessary to engage with the server administrators or the certificate authority to further diagnose and resolve the problem.


    Black Hole apk is a feature-rich, user-friendly, and free music streaming app for Android that aims to provide a hassle-free and high-quality music experience to its users while supporting the artists and maintaining an open-source approach.
     
  • Community member Profile Picture
    Community member 2 on at
    Could not establish trust relationship for the SSL/TLS secure channel
    It seems like you're encountering an SSL/TLS certificate validation issue when trying to call an external web API from D365FO X++. This error typically occurs when the client application doesn't trust the SSL certificate presented by the server.
    To resolve this, you can try the following steps:
    1. **Ensure Trustworthy Certificate**: Make sure that the SSL certificate presented by the server is issued by a trusted Certificate Authority (CA) and is not expired or revoked.
    2. **Update Security Protocol**: You've already set the `SecurityProtocol` to `Tls12`, which is good practice. However, you might also need to set `System.Net.ServicePointManager::ServerCertificateValidationCallback` to a custom validation method if you're using a self-signed certificate or have specific certificate validation requirements.
    3. **Check Proxy Settings**: If your network uses a proxy, ensure that the proxy settings are correctly configured to allow the communication between your application and the external API.
    4. **Verify URL**: Double-check the URL you are using to make sure it's correct and accessible from your network environment.
    5. **Inspect Headers and Payload**: Ensure that the headers and payload you're sending are correctly formatted and match the API's requirements.
    6. **Debugging**: Try to capture more detailed information about the error by logging on video editor or debugging the SSL handshake process to identify the exact cause of the issue.
    Here's a modified version of your code incorporating some of these suggestions:
    ```x++
    try
    {
        // Send out the payload
        using (System.IO.Stream dataStream = request.GetRequestStream())
        {
            dataStream.Write(byteArrayPayload, 0, byteArrayPayload.Length);
        }
        // Get the response
        using (System.Net.HttpWebResponse response = request.GetResponse() as System.Net.HttpWebResponse)
        {
            stream = response.GetResponseStream();
            System.IO.StreamReader reader = new System.IO.StreamReader(stream);
            str responseBody = reader.ReadToEnd();
        }
    }
    catch (System.Net.WebException ex)
    {
        // Log or handle the exception
        str errorMessage = ex.ToString();
        throw error(errorMessage);
    }
    ```
    This code block catches the `WebException` specifically, which includes detailed information about the underlying SSL/TLS error. You can log or handle this exception to get more insights into the problem.
    Remember to replace `error(errorMessage)` with the appropriate error handling mechanism in your application.
    If the issue persists after trying these steps, you might need to consult with your network administrator or the provider of the external API for further assistance.
  • Community member Profile Picture
    Community member 2 on at
    Could not establish trust relationship for the SSL/TLS secure channel
    Unable to establish a trust relationship for the SSL/TLS secure channel. The error message, "The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel," typically points to an SSL/TLS certificate trust problem. To address this issue in D365FO X++, ensure the SSL/TLS certificate is trusted, new update root certificates, verify system date/time, include the root certificate in trusted authorities, and review URL, firewall/proxy settings, and the .NET Framework version. If the issue persists, reach out to the API provider for specific assistance.
  • Community member Profile Picture
    Community member 2 on at
    Could not establish trust relationship for the SSL/TLS secure channel
    Unable to establish a trust relationship for the SSL/TLS secure channel. The error message, "The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel," typically points to an SSL/TLS certificate trust problem. To address this issue in D365FO X++, ensure the SSL/TLS certificate is trusted, ex astris mod apk download new update root certificates, verify system date/time, include the root certificate in trusted authorities, and review URL, firewall/proxy settings, and the .NET Framework version. If the issue persists, reach out to the API provider for specific assistance.
  • Community member Profile Picture
    Community member 2 on at
    Could not establish trust relationship for the SSL/TLS secure channel
    First, ensure the SSL certificate presented by the server is valid and trusted. Check the system date and time, update root certificates, and verify firewall/proxy settings. If confident in the certificate's validity, you can explicitly trust it, though it's generally not recommended without certainty. Tools like fm Fiddler or Wireshark can aid diagnosis by intercepting network traffic.
  • Suggested answer
    Community member Profile Picture
    Community member 4 on at
    Could not establish trust relationship for the SSL/TLS secure channel
     When you try to use an external web API in D365FO X++, you receive an SSL/TLS trust relationship error. This is usually caused by a mismatch between the SSL certificate supplied by the server and the client's expectations. To fix this, confirm that your system trusts the SSL certificate and that the server URL is accurate. New Update Confirm that the Security Protocol Type matches the server's SSL/TLS version, then double-check the Authorization header for correct credentials. By analyzing and modifying these settings, you may properly troubleshoot and resolve the SSL/TLS trust relationship problem.
  • Community member Profile Picture
    Community member 2 on at
    Could not establish trust relationship for the SSL/TLS secure channel
    thanks you're doing good job. Encountering an SSL/TLS trust relationship error in D365FO X++ when calling an external web API often results from disparities between the server's SSL certificate and client expectations. To resolve this issue, validate the SSL certificate's validity and trust on your system, and ensure the accuracy of the server URL.
  • Suggested answer
    Community member Profile Picture
    Community member 2 on at
    Could not establish trust relationship for the SSL/TLS secure channel
    You're encountering an SSL/TLS trust relationship error when attempting to call an external web API in D365FO X++. This commonly happens due to a discrepancy between the SSL certificate presented by the server and the client's expectations. To address this, ensure the SSL certificate is valid and trusted by your system, and verify the correctness of the server URL. Confirm that the SecurityProtocolType aligns with the server's SSL/TLS version and double-check the Authorization header for accurate credentials. By reviewing and adjusting these aspects, you can troubleshoot and resolve the SSL/TLS trust relationship error effectively.

Helpful resources

Quick Links

Take the Community feedback survey!

Answer this brief 15-question survey about your Community experience…

Demystifying Copilot: Service Edition with Sundar Raghavan

Sundar answers more questions about Copilot for Service...

Dynamics 365 Business Central vs Finance and SCM

Take a look at the key differences between Business Central and…

more Community News

Leaderboard

#1
Andre Arnaud de Calavon Profile Picture

Andre Arnaud de Cal... 283,375 Super User

#2
Martin Dráb Profile Picture

Martin Dráb 223,308 Super User

#3
nmaenpaa Profile Picture

nmaenpaa 101,140

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans