Important Update: Archer Community Scheduled Maintenance on November 23–24 - New Community Launching Soon! Learn More..
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Archer Community
- Support
- Knowledge Base
- Publish Failure in Archer Engage Records "The remote certificate is invalid because of errors in the...
No ratings
Kb-Sync
Collaborator III
2024-04-09 01:12 PM - edited 2024-09-26 08:32 AM
Applies To
Product(s): Archer, Engage
Version(s): 6.x
Primary Deployment: On Premises
Description
When attempting to publish an Engage record, the publish fails with the below error found in the Engage logs:
Product: E4V; Action: Publish; ContentId: 2392533; Message: Failed to communicate with the Portal; Exception: System.AggregateException: One or more errors occurred. (The SSL connection could not be established, see inner exception.) ---> System.Net.Http.HttpRequestException: The SSL connection could not be established, see inner exception. ---> System.Security.Authentication.AuthenticationException: The remote certificate is invalid because of errors in the certificate chain: PartialChain at System.Net.Security.SslStream.SendAuthResetSignal(ProtocolToken message, ExceptionDispatchInfo exception) at System.Net.Security.SslStream.CompleteHandshake(SslAuthenticationOptions sslAuthenticationOptions) at System.Net.Security.SslStream.ForceAuthenticationAsync[TIOAdapter](TIOAdapter adapter, Boolean receiveFirst, Byte[] reAuthenticationData, Boolean isApm) at System.Net.Http.ConnectHelper.EstablishSslConnectionAsync(SslClientAuthenticationOptions sslOptions, HttpRequestMessage request, Boolean async, Stream stream, CancellationToken cancellationToken) --- End of inner exception stack trace --- at System.Net.Http.ConnectHelper.EstablishSslConnectionAsync(SslClientAuthenticationOptions sslOptions, HttpRequestMessage request, Boolean async, Stream stream, CancellationToken cancellationToken) at System.Net.Http.HttpConnectionPool.ConnectAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken) at System.Net.Http.HttpConnectionPool.CreateHttp11ConnectionAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken) at System.Net.Http.HttpConnectionPool.AddHttp11ConnectionAsync(HttpRequestMessage request) at System.Threading.Tasks.TaskCompletionSourceWithCancellation`1.WaitWithCancellationAsync(CancellationToken cancellationToken) at System.Net.Http.HttpConnectionPool.GetHttp11ConnectionAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken) at System.Net.Http.HttpConnectionPool.SendWithVersionDetectionAndRetryAsync(HttpRequestMessage request, Boolean async, Boolean doRequestAuth, CancellationToken cancellationToken) at System.Net.Http.DiagnosticsHandler.SendAsyncCore(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken) at System.Net.Http.RedirectHandler.SendAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken) at System.Net.Http.HttpClient.<SendAsync>g__Core|83_0(HttpRequestMessage request, HttpCompletionOption completionOption, CancellationTokenSource cts, Boolean disposeCts, CancellationTokenSource pendingRequestsCts, CancellationToken originalCancellationToken) --- End of inner exception stack trace --- at System.Threading.Tasks.Task.ThrowIfExceptional(Boolean includeTaskCanceledExceptions) at System.Threading.Tasks.Task`1.GetResultCore(Boolean waitCompletionNotification) at System.Threading.Tasks.Task`1.get_Result() at ArcherLongbowService.Services.ProvisionService.GetPortalPublicKey() at ArcherLongbowService.Services.ProvisionService.ProvisionInstance(TenantContext tenant) at ArcherLongbowService.Services.ProvisionService.SetUpInstance(TenantContext tenant) at ArcherLongbowService.Middlewares.ProvisionInstanceHandler.HandleRequest(HttpContext context);
Cause
The Amazon CA certificate is not installed in the Engage server.
Resolution
Install the missing certificate in the Engage server. Follow the below steps:
1. Open the Engage server and navigate to https://www.amazontrust.com/repository/.
2. Download one of the certificates below:
1. Open the Engage server and navigate to https://www.amazontrust.com/repository/.
2. Download one of the certificates below:
a. CN=Starfield Services Root Certificate (Self signed: DER) for older machines (Operating System has not been updated in the past 1-2 years).
b. CN=Amazon Root CA (Self signed DER) for newer machines (Operating System has been updated in the past 1-2 years).
b. CN=Amazon Root CA (Self signed DER) for newer machines (Operating System has been updated in the past 1-2 years).
3. After downloading the certificate, import it into the Engage server's Trusted Store in mmc.
