Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

"A certificate chain could not be built to a trusted root authority" appears when installing APNs certificate in Mobile Security (TMMS)

    • Updated:
    • 15 Oct 2015
    • Product/Version:
    • Mobile Security for Enterprise 8.0
    • Mobile Security for Enterprise 9.0
    • Mobile Security for Enterprise 9.1
    • Mobile Security for Enterprise 9.2
    • OfficeScan 10.6
    • Platform:
    • iOS 4.0+
    • iOS 5.0+
Summary

When using IIS 7.5, the following error message appears after clicking Complete Certificate Request:

A certificate chain could not be built to a trusted root authority.

This happens because of the following:

  • The Apple Push Notification service (APNs) certificate is signed by the Apple Root Certificate Authority (CA) instead of a public CA.
  • Microsoft has enhanced the security settings in IIS when checking the trusted root CA.
Details
Public

To resolve the issue, you need to configure IIS 7.5 for APNs certificate installation:

  1. Download the Apple Root certificate and Application Integration certificate from here.

    apple root certificate and application integration certificate

    Click image to enlarge.

  2. Double-click the downloaded Apple Root certificate file and click Install Certificateon the Certificate window.

    Install Apple root certificate

    Click image to enlarge.

  3. Click Nexton the Certificate Import Wizard welcome screen.

    welcome window

    Click image to enlarge.

  4. Select Place all certificates in the following store, and then click Browse.

    Certificate import wizard

    Click image to enlarge.

  5. On the Select Certificate Store window, tick Show physical stores

    show physical stores

  6. Select Trusted Root Certification Authorities > Local Computer, and then click OK.
    local computer
  7. On the Certificate Import Wizard screen, click Next and then click Finish.

    completing the certificate import wizard

    Click image to enlarge.

  8. Repeat Steps 2 to 7 (except Step 4) for the Application Integration certificate.
     
    For Step 4, select Intermediate Certification Authorities > Local Computer instead.
Premium
Internal
Rating:
Category:
Configure; Install
Solution Id:
1060440
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.