Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

App Control: Disconnected Agent caused by “Error: Server Communication: WinHTTP Communication Error: 12175”

App Control: Disconnected Agent caused by “Error: Server Communication: WinHTTP Communication Error: 12175”

Environment

  • App Control Agent: All Supported Versions
  • Microsoft Windows: All Supported Versions

Symptoms

  • Agent shows as Disconnected in the Console.
  • Disconnected Agent Logs show "Server Communication: WinHTTPCommunication Error: 12175” in Trace.bt9 file.

Cause

There are a few different reasons why Windows would return WinHTTPCommunication Error 12175, including:
  1. App Control Server Certificate has expired.
  2. App Control Server Certificate is Self-signed and Certificate Verification has been enabled.
  3. App Control Server Certificate has incorrect Common Name/Subject Alternative Name
  4. Mismatch of the TLS/Cipher Suite between the endpoint and the application server hosting the App Control Server.
  5. Some other networking related issue.

Resolution

  1. Confirm if Server Certificate has expired, and replace if necessary.
  2. Confirm if Certificate Verification is enabled:
  3. Confirm SSL Certificate Configuration:
  4. TLS/Cipher Suite Mismatch:
  5. Other:

Additional Notes

  • If using a certificate issued by a Certificate Authority: Confirm the Agents have the Root or Intermediate Certificate in Local Computer > Trusted Root Certification Authorities > Certificates.
  • For Windows 2012 machines, the Agent will not connect to the Console if the 'P521 curve ciphers' are not enabled on the App Control Server. Otherwise, the 'P521 curve ciphers' need to be disabled on Windows 2012 machines
  • The correct TLS Protocols and Cipher Suites may not be enabled, see related content.

Related Content


Labels (1)
Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎03-05-2019
Views:
1627
Contributors