Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

App Control: Trusted Certificates List is Blank

App Control: Trusted Certificates List is Blank


  • App Control Server: 8.7+
  • App Control Agents: One device or more on 8.7+


  • Trusted Certificates List is empty but visible under Administration (Gear Icon) > System Configuration > Security
  • Agents show the health check error:
Server certificate list has been stored but has been determined to be invalid
  • TrustedCertificateList.pem is empty


The certificate used for agent communication failed to be added to the trusted certificates list during the server upgrade.


  1. Navigate to Administration > System Configuration > Security
  2. Export the Certificate (Which is listed in the System Configuration > Security page) using the directions in this article
  3. In the Trusted Certificate menu select Import and select the CER file you exported as part of step 2
  4. In the confirmation menu, click the checkbox next to the certificate and select Import
  5. If on 8.7.0 you may need to disable, and enable the radio button next to the imported certificate to generate a new TrustedCertificateList.pem file.

Additional Notes

If the Trusted Certificate List menu is not visible, follow the steps in this article

Related Content

Labels (1)
Was this article helpful? Yes No
100% helpful (1/1)
Article Information
Creation Date: