Remote certificate and listening errors when SharePoint is using SSL
KB001297
PRODUCTSummary
When calling K2 web services from SharePoint and SSL is configured for both SharePoint and K2, you may receive 'remote certificate' errors when SharePoint renders the list.
One or more of the following errors may occur:
- The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. ---> The remote certificate is invalid according to the validation procedure.
- Server was unable to process request. ---> The shim execution failed unexpectedly - There was no endpoint listening at https://{ <https://{/> SharePointServer}/SecureStoreService.svc/https that could accept the message. This is often caused by an incorrect address or SOAP action.
- There was no endpoint listening at https://{ <https://{/> SharePointServer}/SecureStoreService.svc/https that could accept the message. This is often caused by an incorrect address or SOAP action.
This issue is caused by the certificate chain becoming invalid when periodic checks are made to validate the SSL certificates. This is a known issue when using SSL in SharePoint. For more information and a workaround, see the Microsoft KB Site slowness due to SharePoint STS Certificate CRL checking (http://support.microsoft.com/kb/2625048).
Additional Information
Use the following resources if you need more information about this cause of these errors.
- http://www.sharepointblues.com/2012/01/09/sharepoint-certificate-errors/
- http://sharepointlark.wordpress.com/2012/03/12/another-ssl-issue/