000025668 - Host Name Mismatch message when using HTTPS

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000025668
Applies ToenVision
Host Name Mismatch
HTTPS
certificate
Issue
Host Name Mismatch message when using HTTPS
Resolution

When configuring HTTPS the client will try to match the host name to the certificate host name. The certificate provided by Network Intelligence is a self-signed certificate. Customers may also create their own certificate or may insert a certificate that is signed by a acknowledged certificate authority such as Verisign. You will receive this message when enVision cannot find a certificate host name that matches.

The enVision application expects to find the certificate in the keystore database in %_ENVISION%\conf\.keystore under the alias tomcat

You can create your own self signed certificate. Before doing so, make sure to save the original .keystore and delete it from the keystore database. Then launch the following command from the DOS window in the directory %_ENVISION%\conf:

..\jre\bin\keytool -keypass enVision -genkey -alias tomcat -keyalg RSA -keystore .keystore -storepass enVision -dname "CN=[your server name], L=[location], S=[State], C=[Country]" -validity 1825

NOTE: Enter your server name, location, state and country into the string as needed.

Lastly, bounce the NIC WebServer Service.

Legacy Article IDa36643

Attachments

    Outcomes