Summary
You may encounter SSL certificate issues when the root CA certificate used by the Key Management Server (KMS) is not recognized by the operating system in SecureCloud.
Details
This issue happens when you are using a self-signed certificate. Normally, you can add the "--ignoressl" parameter during configuration and provisioning to ignore SSL certificate issues.
As a workaround, you can import the root CA certificate on the operating system where the Agent is installed.
Linux:
- Copy the .CRT file in the ca-certificates repository:
#cp foo.crt /usr/local/share/ca-certificates/foo.crt
- Reload the CA certificates:
#update-ca-certificates
Windows:
- Open Certificates in your local computer using the Microsoft Management Console (MMC). For more information, refer to the following Microsoft KB article: How to: View Certificates with the MMC Snap-in.
- Import the root certificate in the Trusted Root Certificate Authorities\Certificates folder.
- Import client certificate in the Personal folder.
