If you have a certificates generated by a Certificate Authority that is not located on the addressable network, HTTP requests will fail with an invalid certificate error. You can resolve this issue by editing the web.config file so that web applications on vRealize Automation components ignore certificate revocation errors.

About this task

Certificate revocation errors will result in certificates not being trusted which prevents your remote server from authenticating. You can determine if certificate revocation errors are causing problems by running the Windows vcac-config command CheckServerCertificates and then examining the log files.

If you make this change to configure your deployment to accept revoked certificates, these certificates are accepted until their expiration date.

Procedure

  1. Open the Internet Information Services (IIS) Manager.

    The exact procedure for opening IIS varies according to the version of Windows you are using.

  2. Right-click the applicable site for your deployment.
  3. Select Explore.
  4. In the Windows Explorer window that opens containing the web.config file, locate the Configuration section and add the following commands.
    <system.net>
    <settings>
    <servicePointManager checkCertificateRevocationList="false"/>
    </settings>
    </system.net>
  5. Save the file and close it.
  6. Repeat these steps for all applicable sites and IIS servers.