Unable to renew certificate from web enrollment server
Originally Published: 2013-12-26
Article Number
Applies To
Issue
When trying to browse to the web enrollment server page there is the general Internet Explorer error:
"The Page Cannot Be Displayed"
The renewal-cipher.log shows:
[Mon Oct 07 10:03:36 2013] [error] [client 192.168.170.154] Certificate Verification: Error (10): certificate has expired
[Mon Oct 07 10:03:36 2013] [debug] ssl_engine_kernel.c(1896): SSL-C: Write: SSLv3 read client certificate B
[Mon Oct 07 10:03:36 2013] [debug] ssl_engine_kernel.c(1915): SSL-C: Exit: error in SSLv3 read client certificate B
[Mon Oct 07 10:03:36 2013] [debug] ssl_engine_kernel.c(1915): SSL-C: Exit: error in SSLv3 read client certificate B
[Mon Oct 07 10:03:36 2013] [info] [client 192.168.170.154] SSL library error 1 in handshake (server test.xxxxxx.com:1448)
[Mon Oct 07 10:03:36 2013] [info] SSL Library Error: 336105650 error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned
[Mon Oct 07 10:03:36 2013] [info] [client 192.168.170.154] Connection closed to child 29 with abortive shutdown (server test.xxxxxx.com:1448)
Resolution
1) Open the file <install-dir>/WebServer/httpd.conf using a text editor
2) Under "RSA Renewal Server configuration" virtual host section, search for "SSLIgnoreExpiryCheck" directive
3) Set the value of SSLIgnoreExpiryCheck to "on" as follows:
SSLIgnoreExpiryCheck on
4) Restart RCM services
Related Articles
How to renew SSL server certificates with RSA Certificate Manager Number of Views How to renew the Self-signed Certificate for Virtual Host Management Number of Views Unable to renew certificate after clicking on a link to auto-renew-certificate.xuda page in email notification Number of Views Unable to renew system SSL certificates on Registration Manager 6.6.1 Number of Views How to renew the self-signed SSL Certificate on Enterprise Manager Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
