Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

App Control: Error[Hash mismatch] on TrustedCertList.pem and/or KeyChain.json file

App Control: Error[Hash mismatch] on TrustedCertList.pem and/or KeyChain.json file

Environment

  • App Control Server: 8.7.0 and Higher
  • App Control Agent: 8.7.0 and Higher

Symptoms

Trace.bt9 log (created during High Debugging) shows:
Failed to obtain file from 'https://ServerAddress/hostpkg/pkg.php?pkg=TrustedCertList.pem': Hash mismatch Target[C:\ProgramData\Bit9\Parity Agent\TrustedCertList.pem.tmp]
Failed to obtain file from 'hhttps://ServerAddress/hostpkg/pkg.php?pkg=keychain.json': Hash mismatch Target[C:\ProgramData\Bit9\Parity Agent\keychain.json.tmp]

Cause

There is an issue with the file itself, the hash that is being downloaded is not what the App Control Agent expected thus it keeps retrying

Resolution

  1. Verify the Resource Download Location (RDL) specified is correct.
  2. Log in to the application server as the Carbon Black Service Account.
  3. If an Agent is installed, temporarily disable Tamper Protection.
  4. Stop the App Control Server service.
  5. Delete the files:
    C:\Program Files (x86)\Bit9\Parity Server\hostpkg\TrustedCertList.pem
    C:\Program Files (x86)\Bit9\Parity Server\hostpkg\keychain.json
  6. Start the App Control Server service, and verify the files are rebuilt.
  7. If an alternate Resource Download Location is being used, verify the new files are synced to the alternate RDL correctly.

Related Content


Labels (1)
Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎01-03-2023
Views:
584
Contributors