Channel.Security.Error from ArcGIS Sever MapManager

16055
35
Jump to solution
01-27-2012 08:04 AM
ThomasMcCracken
New Contributor III
Hi everyone,

I get an error window when I open my Flex Viewer application that says:

"Layername layer failed to load: Fault code: Channel.Security.Error
Fault info: Security error accessing url
Fault details:  Destination:  DefaultHTTP

The crossdomain.xml is on the GIS and web server and is correct.  In fact, another
GIS Server with the exact same crossdomain.xml brings in the service in the app just fine.  I tested using both SOAP and REST services and get the same result.  I also get the same error from my local web client on my machine rather than the web server so I'm not sure what's going on.  Any suggestions?

Thanks,

Thomas McCracken
GIS Analyst
Georgia Power Company
Tags (2)
0 Kudos
35 Replies
StephanieSnider
Occasional Contributor III
chiliblast,
Are you working with secure map services?  If so, are you using a trusted certificate or a self-signed certificate?  I had errors working with the Flex Viewer using a connection to ArcGIS Server with just a self-signed certificate.  We had to switch to using a "trusted certificate" on the ArcGIS Server (server hosting the map services) in order for the Flex Viewer (on another server) to accept the secure map service without errors.
0 Kudos
MichalKalafarski
New Contributor
chiliblast,
Are you working with secure map services?  If so, are you using a trusted certificate or a self-signed certificate?  I had errors working with the Flex Viewer using a connection to ArcGIS Server with just a self-signed certificate.  We had to switch to using a "trusted certificate" on the ArcGIS Server (server hosting the map services) in order for the Flex Viewer (on another server) to accept the secure map service without errors.


I'm new with configuration certificates. Can you write step by step how to switch self-signed certificate to trusted certificate?
0 Kudos
StephanieSnider
Occasional Contributor III
kalafarskim,
Here's the set of instructions that I followed for installing a trusted certificate.  There's a bit of vodoo involved with how the certificate is created and provided by the issuer, but you should receive three certificates - local, intermediate and root.  They are all "one" certificate but different levels.  You need to import all levels, but the "root" certificate is the main one.  It is not an exact science, but this is the ESRI recommended way of doing it.  Good Luck!

http://resources.arcgis.com/en/help/main/10.1/index.html#/Enabling_SSL_using_a_new_CA_signed_certifi...
0 Kudos
MichalKalafarski
New Contributor
Problem solved.

In my case (HTTPS only, selfsignedcertificate) helped:

1) Setting up ssl in IIS 7.5 (https://*:443)
2) Configuring ArcGIS WebAdaptor, in GIS Server Url field: https://<number ip>:6443
3) Editing crossdomain.xml
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
    <site-control permitted-cross-domain-policies="all"/>
    <allow-access-from domain="*" secure="false"/>
    <allow-http-request-headers-from domain="*" headers="*" secure="false"/>
</cross-domain-policy>

4) In ArcGIS Viewer for Flex 3.5 I added services from https://<number ip>/<webadaptor name>/rest/services (URL address with "localhost" or "server name" will work but only on server machine).
0 Kudos
VincentMiller
New Contributor

Our network administrator cannot figure out this problem  He doesn't know where to place the crossdomain.xml file.  He's tried several locations, but he cannot figure it out.  Please help him!!

0 Kudos
RobertScheitlin__GISP
MVP Emeritus

So he tried in the root of the web server (i.e. wwwroot for IIS)? Are you guys using a reverse proxy?

0 Kudos