Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

"Peer certificate cannot be authenticated" error appears when Deep Security Agent connects to Smart Scan Server

    • Updated:
    • 7 Jul 2016
    • Product/Version:
    • Deep Security 9.5
    • Deep Security 9.6
    • Platform:
    • Windows 2012 Standard R2
Summary

When Deep Security Agents try to communicate with Smart Protection Server, the agents fail and the following error shows in Deep Security Manager (DSM) console:

Failed to connect to a Smart Protection Server. This could be due to a configuration issue, or due to network connectivity.
Error details:
Description: Disconnected from Smart Protection Server: https://ds96.icrc.trendmicro.com/tmcss/? : Error message=536870919[0x20000007](ICRC_HTTP_ERROR), 60[0x3c](Peer certificate cannot be authenticated with given CA certificates)

Details
Public

The error indicates that the agent recognizes an invalid or untrusted certificate. This happens when there is a proxy server in between that decrypts HTTPS traffic. The said proxy server sends its own certificate to the agent, which the agent does not trust.

To resolve the issue, exclude the Smart Protection Server's URL (https://ds96.icrc.trendmicro.com/tmcss) from the HTTPS scanning list of the proxy server.

Premium
Internal
Rating:
Category:
Troubleshoot
Solution Id:
1113463
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.