Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Trust failure issue when calling Web API

rokkam_saiteja
Level 4

2 weeks ago

Hi,

I want to retrieve password from the CyberArk though Rest ApI Call in blueprism

Web Api URL:

https://170.4.82.121/AIMWebService/api/Accounts?AppID=BluePrism_RPA&Safe=P-HDQ-RPA&Object=Operating%20System-RPARobotAccounts-HDQ-RPA_User_IT_00

The highlighted part in the above link is the username to retrieve password and it is dynamic

please find my configuration in blueprism as below:

Authentication type : None

 

image.pngimage.pngimage.pngimage.png

After configuring the web URL in blueprism and calling the same, getting the below error

rokkam_saiteja_0-1744117387087.jpeg

When i tested the same URL in browser i am getting success code.

 

Kindly provide some assistance to integrate CyberArk Api and correct me if i was doing anyting wrong

Thanks.

 

 
 

 

 

 

 
 
 

 

 
 
 
 

 

 

 

 

 

 

 

0 Likes
3 REPLIES 3

steven.boggs
Staff
Staff

2 weeks ago

This error is caused by a trust relationship to the web address of the API. It occurs when you are using HTTPS:// to address the URL instead of HTTP, and there is an issue establishing a secure connection to that web address. Normally this can be verified by opening a browser and browsing to the base url of your API, where you can observe a message stating the site is not secure, or there is an error with the certificate.

We'd recommend working with your IT team to detrermine why the certificate is not trusted. Some common issues include the certificate being expired, the cert being issued to a different domain (i.e. to the FQDN instead of a short name), or if the cert is self-signed/issued by an untrusted authority.

Alternatively, you could look into using the ready-made Asset for Cyberark on the Digital Exchange and following the guidance in the accompanying documentation for this integration.

0 Likes

rokkam_saiteja
Level 4
In response to steven.boggs

2 weeks ago

Hi @steven.boggs 

We are shifting from SOAP API to REST API .I am new to the API Automation.

The above-mentioned Api URL is working when we hit directly in browser but getting error via Rest api call

The certificate is trusted and not expired. We could see that certificate is under Trusted Root Certificate Folder also.

I have read the document attached in CyberArk Integration from Digital exchange, regarding rest api configuration i was confused about what values we need to initialize in both Parameters collection input data item and Client Certificates collection input data item.

we don't have access to download the VBO in Client Machines directly.

Please find the attached screenshots for you reference 

image.pngimage.pngimage.png

 

If possible, kindly provide document to configure REST API CyberArk Integration.

0 Likes

steven.boggs
Staff
Staff
In response to rokkam_saiteja

2 weeks ago

The only thing that stands out in your example is if the user account with permissions to access the site via a browser is the same user account attempting to access it via the API call. I'd suggest verifying the user/machine are either the same, or have the same permissions/access to the cert.

Alternately, CyberArk Support is pretty responsive and can help with issues accessing their API -- have you reached out to them to see if they can provide some suggestions here?

0 Likes
Top