This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ControlPoint certificate requirements

logs.zip

We just generated a new SSL certificate using a local CA for our working ControlPoint.  We've installed it in IIS and we've update the thumbprint in the 2 web.configs and one exe.config file as per the manual.  We're getting and exception on the dashboard repos:

The HTTP request was forbidden with client authentication scheme 'Anonymous'.
Back
System.ServiceModel.Security.MessageSecurityException: The HTTP request was forbidden with client authentication scheme 'Anonymous'. ---> System.Net.WebException: The remote server returned an error: (403) Forbidden.
at System.Net.HttpWebRequest.EndGetResponse(IAsyncResult asyncResult)
at System.ServiceModel.Channels.HttpChannelFactory`1.HttpRequestChannel.HttpChannelAsyncRequest.CompleteGetResponse(IAsyncResult result)
--- End of inner exception stack trace ---
at System.Runtime.AsyncResult.End[TAsyncResult](IAsyncResult result)
at System.ServiceModel.Channels.ServiceChannel.SendAsyncResult.End(SendAsyncResult result)
at System.ServiceModel.Channels.ServiceChannel.EndCall(String action, Object[] outs, IAsyncResult result)
at System.ServiceModel.Channels.ServiceChannelProxy.TaskCreator.<>c__DisplayClass7_0`1.<CreateGenericTask>b__0(IAsyncResult asyncResult)
at System.Threading.Tasks.TaskFactory`1.FromAsyncCoreLogic(IAsyncResult iar,

Is this a certificate issue? And if so, does anyone know the certificate attribute requirements?

Our current cert has the following props:

Key Usage:Key encipherment (a0), digital signature

Extended Key usuage: server authentication (our previous cert had client auth as well but the local CA policies have changed and we cannot get this in our cert)

Any pointers?

Tags: