Error in Third Party Certificate
Problem
An error in the Third Party Certificate configuration can cause issues with the MDM server and the Secure Gateway installation. Common symptoms include server startup failures and certificates not being reflected in the MDM Server after configuration.
Cause
The primary causes of this error are:
- Improper Intermediate Chain Configuration: The intermediate certificate chain may not be configured correctly.
- Server Issues Post Configuration: The server may not start after configuring the Third Party certificate, or the certificate might not be reflected in the MDM Server even after a restart.
Resolution
- Identify the Certificate Error:
- Open the server URL (https://nat_address:port_number) in a browser to view the specific certificate error.
- Ensure that the intermediate chain is configured properly.
- Configure Intermediate Certificate Properly:
- Navigate to the Admin Console: Go to Admin -> Import SSL certificate in your MDM console.
- Upload Vendor-Signed Certificates: Follow the prompts to upload the vendor-signed certificates.
- Intermediate Certificate Configuration: If prompted, choose Automatic to detect the intermediate certificate automatically, or Manual to upload it manually.
- Secure Gateway Configuration:
- If Secure Gateway is configured, copy the newly configured certificate from the MDM server to the Secure Gateway configuration.
- Ensure that the certificate is accessible in the installation directory with read and write permissions.
- Check Certificate Permissions:
- Verify that the certificate file has the necessary read and write permissions in the installation directory.
For more detailed guidance on secure communication using third-party certificates, refer Secure communication using 3rd party certificate.
If the problem still persists, contact mdm-support@manageengine.com (MDM On-Premises) or mdmcloud-support@manageengine.com (MDM Cloud)