Environment
- App Control Server: 8.7+
- App Control Agents: One device or more on 8.7+
Symptoms
- Trusted Certificates List is empty but visible under Administration (Gear Icon) > System Configuration > Security
- Agents show the health check error:
Server certificate list has been stored but has been determined to be invalid
- TrustedCertificateList.pem is empty
Cause
The certificate used for agent communication failed to be added to the trusted certificates list during the server upgrade.
Resolution
- Navigate to Administration > System Configuration > Security
- Export the Certificate (Which is listed in the System Configuration > Security page) using the directions in this article
- In the Trusted Certificate menu select Import and select the CER file you exported as part of step 2
- In the confirmation menu, click the checkbox next to the certificate and select Import
- If on 8.7.0 you may need to disable, and enable the radio button next to the imported certificate to generate a new TrustedCertificateList.pem file.
Additional Notes
If the Trusted Certificate List menu is not visible, follow the steps in
this articleRelated Content
