An error occured when HS.IHE.XDSb.Registry.Operations on the BUS sends query request to the registry. The error is  Error 6242: HTTP request to SOAP webservice returned unexpected status: 403. Any thoughts as to why? The settings on the components haven't changed. The process worked a few days ago.  > 07/16/2020 14:54:07 \***\***\***\***\***\***\*** > Input to Web service with SOAP action = SOAP1.2 > <env:Envelope xmlns:S="http://www.w3.org/2003/05/soap-envelope" xmlns:env="http://www.w3.org/2003/05/soap-envelope"><env:Header><To xmlns="http://www.w3.org/2005/08/addressing">https://crispapitest.azure-api.net/healthshare/list/</To><ReplyTo xmlns="http://www.w3.org/2005/08/addressing"> > >
> http://www.w3.org/2005/08/addressing/anonymous >
</ReplyTo><FaultTo xmlns="http://www.w3.org/2005/08/addressing"> > >
> http://www.w3.org/2005/08/addressing/anonymous >
</FaultTo><MessageID xmlns="http://www.w3.org/2005/08/addressing">uuid:22feecae-06b1-47e0-8756-c89640b6845f</MessageID><From xmlns="http://www.w3.org/2005/08/addressing"> > >
> urn:oid:2.16.840.1.113883.3.651.2.1 >
</From><Action xmlns="http://www.w3.org/2005/08/addressing">urn:ihe:iti:2007:RegistryStoredQuery</Action></env:Header><env:Body><AdhocQueryRequest xmlns="urn:oasis:names:tc:ebxml-regrep:xsd:query:3.0" xmlns:ns2="urn:oasis:names:tc:ebxml-regrep:xsd:rim:3.0" xmlns:ns3="urn:hl7-org:v3" xmlns:ns4="urn:oasis:names:tc:ebxml-regrep:xsd:rs:3.0" xmlns:ns5="urn:oasis:names:tc:ebxml-regrep:xsd:lcm:3.0"><ResponseOption returnComposedObjects="true" returnType="LeafClass"></ResponseOption><ns2:AdhocQuery id="urn:uuid:14d4debf-8f97-4251-9a74-a90016b0af0d"><ns2:Slot name="$XDSDocumentEntryPatientId"><ns2:ValueList><ns2:Value>'80157245^^^&1.3.6.1.4.1.21367.2010.1.2.300&ISO'</ns2:Value></ns2:ValueList></ns2:Slot><ns2:Slot name="$XDSDocumentEntryStatus"><ns2:ValueList><ns2:Value>('urn:oasis:names:tc:ebxml-regrep:StatusType:Approved')</ns2:Value></ns2:ValueList></ns2:Slot><ns2:Slot name="$XDSDocumentEntryClassCode"><ns2:ValueList><ns2:Value>('34133-9^^2.16.840.1.113883.6.1','11506-3^^2.16.840.1.113883.6.1')</ns2:Value></ns2:ValueList></ns2:Slot></ns2:AdhocQuery></AdhocQueryRequest></env:Body></env:Envelope> > > > \---\---\---\---\--- > Validate Security header: action=SOAP1.2 > Security SSL message > > \---\---\---\---\--- > Prepare Security header for output: SOAP class=%SOAP.WebRequest, method= > > 07/16/2020 14:54:07 \***\***\***\***\***\***\*** > Output from Web client with SOAP action = urn:ihe:iti:2007:RegistryStoredQuery > > > > <SOAP-ENV:Envelope xmlns:SOAP-ENV='http://www.w3.org/2003/05/soap-envelope' xmlns:xsi='http://www.w3.org/2001/XMLSchema-instance' xmlns:s='http://www.w3.org/2001/XMLSchema' xmlns:wsa='http://www.w3.org/2005/08/addressing' xmlns:wsse='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd' xmlns:wsu='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd'> >   <SOAP-ENV:Header> > <wsa:Action SOAP-ENV:mustUnderstand="true">urn:ihe:iti:2007:RegistryStoredQuery</wsa:Action><wsa:From><wsa:Address>https://THSAPP1:57772/csp/healthshare/hsbus/HS.IHE.XDSb.Registry.Operations.cls</wsa:Address></wsa:From><wsa:MessageID>urn:uuid:E148C2D8-45A7-43BA-99D9-CFDAD1D7C5CF</wsa:MessageID><wsa:ReplyTo SOAP-ENV:mustUnderstand="true"><wsa:Address>http://www.w3.org/2005/08/addressing/anonymous</wsa:Address></wsa:ReplyTo><wsa:To>https://thsapp1.test.local/csp/healthshare/hsregistry/services/HS.IHE.XDSb.Registry.Services.cls</wsa:To><Security xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"><UsernameToken><Username>HS_Services</Username><Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">D1vS~#_|(B</Password></UsernameToken></Security>  </SOAP-ENV:Header> >   <SOAP-ENV:Body><AdhocQueryRequest xmlns="urn:oasis:names:tc:ebxml-regrep:xsd:query:3.0"><ResponseOption returnComposedObjects="true" returnType="LeafClass"/><ns2:AdhocQuery xmlns="urn:oasis:names:tc:ebxml-regrep:xsd:rim:3.0" xmlns:ns2="urn:oasis:names:tc:ebxml-regrep:xsd:rim:3.0" id="urn:uuid:14d4debf-8f97-4251-9a74-a90016b0af0d"><ns2:Slot name="$XDSDocumentEntryPatientId"><ns2:ValueList><ns2:Value>'80157245^^^&1.3.6.1.4.1.21367.2010.1.2.300&ISO'</ns2:Value></ns2:ValueList></ns2:Slot><ns2:Slot name="$XDSDocumentEntryStatus"><ns2:ValueList><ns2:Value>('urn:oasis:names:tc:ebxml-regrep:StatusType:Approved')</ns2:Value></ns2:ValueList></ns2:Slot><ns2:Slot name="$XDSDocumentEntryClassCode"><ns2:ValueList><ns2:Value>('34133-9^^2.16.840.1.113883.6.1','11506-3^^2.16.840.1.113883.6.1')</ns2:Value></ns2:ValueList></ns2:Slot></ns2:AdhocQuery></AdhocQueryRequest></SOAP-ENV:Body> > </SOAP-ENV:Envelope> > > 07/16/2020 14:54:07 \***\***\***\***\***\***\*** > Input to Web client with SOAP action = urn:ihe:iti:2007:RegistryStoredQuery > > ERROR #6242: HTTP request to SOAP WebService returned unexpected status: 403. >   >   >   >   > > >
>  
> >
>  
  > >

> HTTP Error 403.16 - Forbidden >

  > >
  > >

> Your client certificate is either not trusted or is invalid. >

  > >
>
  > >
> >
>  
  > >
>

> Most likely causes: >

  > >
  > >
    >      > >
  • > The client certificate used for this request is not trusted by the Web server. >
  • >
  > >
  >
  > >
>
  > >
> >
>  
  > >
>

> Things you can try: >

  > >
  > >
    >      > >
  • > The client may have an old certificate selected for client authentication to this Web site. Close all open client windows, open a new browser window, and then select a valid certificate for client authentication. >
  •      > >
  • > Verify that the client certificate is trusted by the Web server. >
  •      > >
  • > Verify that the root certificate is properly installed and trusted on the Web server. >
  •      > >
  • > Create a tracing rule to track failed requests for this HTTP status code. For more information about creating a tracing rule for failed requests, click here. >
  • >
  > >
  >
  > >
>
  > >
 
> >
>  
  > >
>

> Detailed Error Information: >

  > >
  > >
>  
    > > >  
    > > > > > >   > >
    > > > > > >   > >
    > > > > > >   > >
    > > > > > >   > >
     
    >
> Module > >    IIS Web Core >
> Notification > >    BeginRequest >
> Handler > >    CSPGateway_*.cls >
> Error Code > >    0x800b0109 >
  > >
  >
  > >
  > >
>  
    > > >  
    > > > > > >   > >
    > > > > > >   > >
    > > > > > >   > >
    > > > > > >   > >
     
    >
> Requested URL > >    https://thsapp1.test.local:443/csp/healthshare/hsregistry/services/HS.IHE.XDSb.Registry.Services.cls >
> Physical Path > >    C:\InterSystems\CSPGateway\healthshare\hsregistry\services\HS.IHE.XDSb.Registry.Services.cls >
> Logon Method > >    Not yet determined >
> Logon User > >    Not yet determined >
  > >
    > >
> >
  > >
  >
  > >
  >
  > >
>
  > >
 
> >
>  
  > >
>

> More Information: >

  > >
  A Secure Sockets Layer (SSL) client certificate identifies you as a valid user of the resource. This error can occur if you choose a client certificate created by a Certificate Authority (CA) that is not trusted by the Web server. 
  > >

> View more information » >

  > >
   
  >
  > >
>
  > >
>
  > > >   >