Problem with SSL/TLS secure channel with PayPal

For general questions and discussions specific to the AbleCommerce 7.0 Asp.Net product.
Post Reply
vadim
Ensign (ENS)
Ensign (ENS)
Posts: 14
Joined: Mon Apr 05, 2010 9:30 am

Problem with SSL/TLS secure channel with PayPal

Post by vadim » Mon Oct 05, 2015 9:57 am

Hi,

Our web store started to show error:

An error has occured at https://abc-machine-embroidery.com/Proc ... derId=9627

The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.; The remote certificate is invalid according to the validation procedure.

Web site is https://abc-machine-embroidery.com/Default.aspx

Also we are not receiving auto confirmation for the payments.

We’d appreciate your help and advices.

Thank you

User avatar
Katie
AbleCommerce Admin
AbleCommerce Admin
Posts: 2651
Joined: Tue Dec 02, 2003 1:54 am
Contact:

Re: Problem with SSL/TLS secure channel with PayPal

Post by Katie » Mon Oct 05, 2015 3:54 pm

I doubt this has anything to do with AbleCommerce. It might be a problem with the SSL certificate or the root certificate(s) installed on the server. Do you have the Google Chrome browser? If you go to your website using Chrome, notice in the top bar that your Lock icon has a warning symbol. If you click on that, you will see that the site is using obsolete encryption - TLS 1.0 and SHA1.

You might want to check with Paypal, but they might want you to be using better encryption. I know that some of the other gateways have already made this a requirement. I would recommend that you upgrade your SSL certificate to SHA2 to begin with.

Hope this helps,
Katie
Thank you for choosing AbleCommerce!

http://help.ablecommerce.com - product support
http://wiki.ablecommerce.com - developer support

User avatar
Shopping Cart Admin
AbleCommerce Admin
AbleCommerce Admin
Posts: 3055
Joined: Mon Dec 01, 2003 8:41 pm
Location: Vancouver, WA
Contact:

Re: Problem with SSL/TLS secure channel with PayPal

Post by Shopping Cart Admin » Mon Oct 05, 2015 3:59 pm

root certificate(s) is the likely issue:

https://devblog.paypal.com/paypal-ssl-c ... e-changes/

The connection to paypal isn't affected by the SSL cert your store is using, though you should be using a SHA-2 certificate or chrome will complain.
Thanks for your support

Shopping Cart Guru
AbleCommerce.com
Follow us on Facebook

vadim
Ensign (ENS)
Ensign (ENS)
Posts: 14
Joined: Mon Apr 05, 2010 9:30 am

Re: Problem with SSL/TLS secure channel with PayPal

Post by vadim » Mon Oct 12, 2015 6:39 pm

Thanx to everybody!

I found what was the problem. Windows server 2003 doesn't work well with SHA2 certificate.

Fixed!

bmckenzie
Ensign (ENS)
Ensign (ENS)
Posts: 1
Joined: Mon Aug 10, 2009 9:17 am

Re: Problem with SSL/TLS secure channel with PayPal

Post by bmckenzie » Wed Oct 14, 2015 9:26 am

I'm experiencing the same problem as the OP. Started around noon yesterday. I've installed the G5 root certificate.. or at least I think I have, but I'm still getting the error.

vadim, how did you fix the problem?

vadim
Ensign (ENS)
Ensign (ENS)
Posts: 14
Joined: Mon Apr 05, 2010 9:30 am

Re: Problem with SSL/TLS secure channel with PayPal

Post by vadim » Wed Oct 14, 2015 2:54 pm

I'd recommend to start from here:

https://support.microsoft.com/en-us/kb/938397


Good luck :)

Post Reply