EE_Darren 0 Posted February 6, 2017 Share Posted February 6, 2017 (edited) Hi, I'm attempting to get a new push installation of the ESET Agent working. The Remote Administrator Console 6.4 is installed & working, but I'm having difficulty with the push of the Remote Agent. The Software installs successfully, but the agent does not appear to be talking to the server. I checked the trace.log and I get the below error: 2017-02-06 16:50:58 Error: CReplicationModule [Thread 3048]: CReplicationManager: Replication (network) connection to 'host: "server_name.domain.local" port: 2222' failed with: Connection closed by remote peer for session id 1 I've checked DNS, that appears to be working fine both ways. The server firewall is set to allow connections to port 2222. I'm a bit stumped as to where to go from here. Any help gratefully received. Edited February 6, 2017 by EE_Darren Link to comment Share on other sites More sharing options...
ESET Staff MartinK 376 Posted February 7, 2017 ESET Staff Share Posted February 7, 2017 Could you please check SERVER trace log for Errors? Seems SERVER is rejecting connection - most probably rejecting AGENT's certificate. Link to comment Share on other sites More sharing options...
EE_Darren 0 Posted February 7, 2017 Author Share Posted February 7, 2017 Hi Martin, From the Server trace log: 2017-02-06 01:15:51 Error: NetworkModule [Thread 37e8]: Verify user failed for all computers: 10.110.1.29: NodVerifyCertificateChain failed: NodVerifyTrustResult: 6, NVT_NotTrustedRoot, X509ChainStatus: 0x10000, X509CSF_PartialChain,10.110.1.29: NodVerifyCertificateChain failed: NodVerifyTrustResult: 6, NVT_NotTrustedRoot, X509ChainStatus: 0x10000, X509CSF_PartialChain 2017-02-06 01:15:51 Error: NetworkModule [Thread 37e8]: Receive: NodSslWriteEncryptedData: Incorrect/unknown certificate or key format., ResolvedIpAddress:10.110.1.29, ResolvedHostname:10.110.1.29, ResolvedPort:61906 2017-02-06 01:15:51 Error: NetworkModule [Thread 37e8]: Protocol failure for session id 12346, error:Receive: NodSslWriteEncryptedData: Incorrect/unknown certificate or key format. So what did I do wrong? Link to comment Share on other sites More sharing options...
ESET Staff MartinK 376 Posted February 7, 2017 ESET Staff Share Posted February 7, 2017 It means that SERVER is missing CA certificate that was used to sign AGENT's certificate. Have you been generating your own certificates? What method are you using to deploy AGENTs? IS there any chance AGENT certificate is not correct - for example from different or previous ERA installation? Link to comment Share on other sites More sharing options...
Recommended Posts