I have a secured SSL site which I wanted to query with SPD (REST webservice). SPD gave me the well known ‘the server returned a non specific error’ message. After some investigation, I found the following error in the ULS logs:
An operation failed because the following certificate has validation errors:\n\nSubject Name: CN=*.company.com, OU=PositiveSSL Wildcard, OU=Domain Control Validated\nIssuer Name: CN=PositiveSSL CA, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB\nThumbprint: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX\n\nErrors:\n\n The root of the certificate chain is not a trusted root authority..
Hmmm okay. At first I tried adding the certificate on the server itself, didn’t make any difference. Then I noticed an option in Central Administration called ‘Manage trust’ which is located under Security / General Security. There you can add the root certificate of your SSL certificate to SharePoint. To do this; click New in the ribbon and provide a name for your new trust. For Root certificate; select the root certificate of your choice. For Token Issuer certificate, I selected my own certificate, although I’m not sure is that’s necessary. After adding this: errors will disappear!
This probably only happens with real certificates, since a self signed one will have an automatically trusted root certificate I guess.