I've just upgraded a system to 10.5.4 and getting this error when trying to run BPA tests.
Another question has been raised about it https://community.dataminer.services/question/exception-bpa-doesnt-have-a-valid-signature/ but no particular answer why the BPAs won't run compared to 10.4.5 apart from the intermediate and root certs are needed.
Do all BPAs need to be signed in the newer versions of DataMiner, as where they didn't before?
Our offline systems have the root certs but not the intermediate certs: -
DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1
Sectigo Public Code Signing Root R46
Sectigo Public Code Signing CA R36
I can see the certificates against the digital signature for the BPA dlls have the entire certificate path in them.
Can at least the intermediate certificates be included in the SkylineCodeSigning2024 & SkylineCodeSigning2024-DigiCert certs to prevent this issue where servers don't have internet access?
Hi Seppe,
I haven't tried all of them, but 4 odd I have tried all fail.
Can you please share the SLBPAManager.txt logging?
Hi Philip,
BPAs have always been signed, but the reason they started failing for you after the upgrade is because we had to renew our code signing certificate. On a windows machine that does not have all the updates, it could be that the root and intermediate certificates of our code signing certificate are not installed, resulting in the failing signature check.
Updating windows should fix the issue, but you can install them manually as a workaround.
We will check internally if we can make changes to prevent this issue.
Hi Philip, do all the BPA test fail or only a few?