Georgi Stoychev 0 Posted April 8, 2024 Posted April 8, 2024 (edited) Hello, Couple of days ago, we changed our ESET Protect On-Prem server certificate, as it was about to expire, and the old certificate was revoked. Today we see that several computers, which were offline when we replaced the certificate, are not connecting to the server. We saw in the logs in "C:\ProgramData\ESET\RemoteAdministrator\Agent\EraAgentApplicationData\Logs" an error message "Error: Remote server peer certificate is not trusted by this agent. Details: NodVerifyCertificateChain failed: NodVerifyTrustResult: 42, NVT_NotTrusted, X509ChainStatus: 0x4, X509CSF_Revoked, certificate" We have a backup of the old server certificate, but would like to use the new one. Is there some step that we may have missed when we changed the old certificate? We haven't restarted the server after the change. Could that be the issue? Edited April 8, 2024 by Georgi Stoychev
Administrators Marcos 5,725 Posted April 8, 2024 Administrators Posted April 8, 2024 You wrote that the original server certificate was about to expire. If it has already expired in the mean time, restoring it won't help. Wouldn't it be easier just to re-deploy the management agent on those machines using current certificates?
Georgi Stoychev 0 Posted April 8, 2024 Author Posted April 8, 2024 Hi Marcos, The old certificate was about to expire next month. We just restarted the server and we can see that the clients are connecting again.
Recommended Posts