cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Agentry certificate issue with smp server

Former Member

on ‎01-25-2017 12:26 PM

0 Kudos

Hello Experts,

We have developed one Agentry application, App ID is generated on SMP server.After link applied on chrome browser Getting "I am here!" ,when the same link is applied on Agentry client, it giving certificate error.I have created certificates using Host name as well as IP address,After installation of these certificates alternatively still error is occurring.

Following are detail configuration which i am using :

1. SMP server : version 3.0.10.0.

2. SMP SDK : version 2.0.13.0 & 3.Agentry Client : version 70.13.4.68

Please suggest suitable help. Attaching screenshots. PFA. Thanks in Advance .Also please let me know if you require some more details about this issue.

Regards,

Pavan

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

former_member265714
Participant
‎01-27-2017 3:58 PM
0 Kudos

Hi Pavan,

Please make sure you have the correct certificate installed. The location of the of the SMP Certificate is in the SMP/Server/Configuration folder . I have attached screen shot of the certificate location and to find out the name of the certificate.

Thanks

Subash Narayan

SAP Support Engineer

Show replies
Show replies
Former Member
‎01-28-2017 8:29 AM
0 Kudos

Hi Subash,

Now Certificate Error from IE gone, by closing & reopening of IE.

Now new error occurring, Please check below images.

Is still something missing ? Please let me know.

Regards,

Pavan

Former Member
‎01-30-2017 4:12 PM
0 Kudos

This looks to be a different issue now. Can you post the startup.log and events.log file from the server? You might be seeing this error: https://archive.sap.com/discussions/thread/3569444

Former Member
‎02-02-2017 10:14 AM
0 Kudos

Hello Stephan,

Sorry for late reply.Sending startup.log & events.log file for your consideration. Please check. I also tried as per mentioned in link & i am unable to identify from MachineKeys folder which one is required key of SMP server. Provided necessary authority to that folder, but didn't worked.

Regards,

Pavan

events-log.txt startup-log.txt

bill_froelich
Product and Topic Expert
Product and Topic Expert
‎02-02-2017 4:50 PM
0 Kudos

When I have trouble identifying the file I will move everything to a temporary location and then startup the server so it generates as needed. Then move everything expect that name back to the folder.

--Bill

bill_froelich
Product and Topic Expert
Product and Topic Expert
‎01-25-2017 1:48 PM
0 Kudos

The Agentry client needs to be able to trust the issuer of the server certificate. In this case it is telling you that the certificate received for COM-3 was not issued by a trusted authority. You will need to install the appropriate CA certificate(s) on your device so the client can validate the issuer.

Are you connecting directly to the SMP server or are you going through a load balancer or proxy?

Do you know if the certificate is self signed or issued by an internal CA or 3rd party CA?

Usually (especially with WPF clients) the easiest thing is to connect to the URL in Internet Explorer and then View the certificate received. IE will usually let you install it directly from there. You will need to store it in the Trusted Roots Certification Authorities catalog. Once you have installed it close all your IE instances and reconnect to the URL. You should not see any warnings about the certificate. Then try connecting from the WPF client.

--Bill

Show replies
Show replies
Former Member
‎01-27-2017 7:10 AM
0 Kudos

Hello Bill,

I clicked the SAP Management Cockpit icon & it opened in IE,installed certificate from IE also attaching screenshot of it.The certificate of COM-3 is self signed. I have tried to make certificate with IP address as well as static IP & kept it in Trusted Root Certificates Authorities.I am directly connecting to SMP server .Please let me know if you need more details.

Installed certificates mentioned above.

Now getting new error "Requesting Public Key from Server Public Key Request Failed".

Regards,

Pavan

bill_froelich
Product and Topic Expert
Product and Topic Expert
‎01-27-2017 4:12 PM

After installing the certificate you should close and reopen IE and connect again to the cockpit. If you still see a Certificate Error then something needs to be adjusted.

Are you on Win 10 AU? If so you may need to make sure your certificate is generated with SHA256 or higher as windows is now treating SHA1 certificates and non-existant (insecure).

--Bill

Former Member
‎01-28-2017 8:36 AM
0 Kudos

Hello Bill ,

I am using Windows 8 pro . Is this OS related issue?

Regards,

Pavan

Ask a Question