Issue with Cube connecting to Agent after configuring redirect to HTTPS

346 viewsCube Desktop App
2
1 Comment

Hi Dojo,

Recently configured our DMA agents with a self-signed SSL certificate and also configured a HTTP redirect to HTTPS. After the configuration, the low-code apps could load normally on the browser (of course, there's the usual security warning as it's a self-signed certificate).

However, when I tried to connect to the Agent via Cube, I get this error:

Is this due to the self-signed certificate? If so, how can I workaround this?

Any advice is appreciated. Thanks!

Seppe Dejonckheere [SLC] [DevOps Enabler] Answered question 31st July 2024
Vikas Choudhary [DevOps Enabler] commented

We also faced same issue for LAB DMA with Self-Signed Certificate. It’s got fixed after adding in Trusted Folder. Please add certificate in trusted folder and try again. Hope It should work.

Thanks

3 Answers

-1
1.74K 3 Comments

Hi Andrew,

Yes the issue is related to certificate, however it's not because it is self signed. You should not see any warning about certificate when accessing LCA which means there is another issue with your certificate.

Few ideas:

  • Can you try using this script to generate certificate?
  • Did you move your certificate to Trusted folder?

Hopefully the script will solve your problem but if not, note that certificates are unrelated to DataMiner, and since those are error prone in their nature I would suggest double checking every detail of your certificate creation process, as they are all equally important.

Let me know if I can help you with anything else,

Cheers

Andrew Teoh [DevOps Advocate] Posted new comment 31st July 2024
Andrew Teoh [DevOps Advocate] commented

Thanks for the reply. Can I ask what is this Truster folder that you’re referring to?
Edib Šupić [SLC] [DevOps Catalyst] commented

It’s the folder where you have to move your cert to in order for it to be Trusted. Right now what you did is created a cert and added it to your personal certificates folder, however Windows doesn’t trust those. Just follow these steps:
https://learn.microsoft.com/en-us/skype-sdk/sdn/articles/installing-the-trusted-root-certificate#adding-certificate-snap-ins.
Find your certificate in Personal folder(most likely, depends how and where you created your cert) and copy it to Trusted Root Certification Authorities. Note that in step 4 you may need to select Computer account instead.
Andrew Teoh [DevOps Advocate] commented

Thanks for the additional info. Will give it a go.
You are viewing 1 out of 3 answers, click here to view all answers.