Hi
We have several hotspots using different SSL certificates from different vendors Comodo etc
Starting on the 10th of September 2020 none of them are processing PayPal payments and I am wondering if anybody else is effected.
error: PayPal - ssl connection error: handshake failed: unable to get local issuer certificate (6)
I'm not too sure if something has changed at PayPal but none of the router configurations have changed, all was working flawlessly before September the 10th as we were testing one in the field.
I don't think this is a configuration issue as I say nothing has changed and the SSL validates in a web browser when I access user manager from the outside world
We are using different certs on each user manager router so that rules the SSL cert out
The issue is present on different sw levels, both 6.47.1 and 6.45.9 effected
I have even gone as far as manually downloading the digicert certificates as recommended by PayPal and installing them, in fact I downloaded just about every one I could find but still getting the same error.
It wouldn't be too bad if I could simply change the status of the payment to [transaction-status=approved] but that doesnt appear to work:
[admin@Office] /tool user-manager payment> pr
12 user=testingac customer=admin price=50 currency="GBP" trans-start=sep/13/2020 18:46:01 trans-end=sep/13/2020 18:46:27 trans-status=error result-code=0
result-msg="PayPal - ssl connection error: handshake failed: unable to get local issuer certificate (6)" method=paypal
[admin@Office] /tool user-manager payment> set 12 trans-status=approved
failure: state change error
I suspect that this is because the return values from PayPal contain things like the purchased profile for example
However it worked the day before on the 9th of September:
[admin@Office] /tool user-manager payment> pr
0 user=Huawei customer=admin price=50 currency="GBP" trans-start=sep/09/2020 22:37:17 trans-end=sep/09/2020 22:37:43 trans-status=approved result-code=0 result-msg="Completed" method=paypal
Certificate status:
1 K T XXXXXXXXXXXXXXXXcrt_0 XXXXXXX DNS:XXXXXXXXXXXXX
2 L T USERTrustRSAAAACA.crt_0 USERTrust RSA Certification Authority
3 L T SectigoRSADomainValidationSecureServerCA.crt_1 Sectigo RSA Domain Validation Secure Server CA
4 L T AAACertificateServices.crt_2 AAA Certificate Services
Any ideas or anybody else effected?
Thanks