ArcGIS Portal Error: Unable to load URL status 500 white changing feature hosted layer settings
Hello,
I have ArcGIS Enterprise Base Deployment installed on a virtual machine. Both Server and Portal use Web Adaptors and they are federated. It has been in a use for a while when I experienced an error while changing capabilities of feature hosted layer in Portal. When I want to 'enable editing' in settings and save it I got an error:
I am using an external URL but everything is working as it should, certificates are also fixed. Error appears with all the layers hosted on portal. What is more, even though a layer is set as editable (from before), it figures as an empty setting in Portal.
I also found a message which comes in portal log files when I try to change capabilities:
<Msg time="2019-01-07T10:17:59,295" type="SEVERE" code="219999" source="Sharing" process="2188" thread="16" methodName="" machine="xyz" user="" elapsed=""> URL 'https://xyz:6443/arcgis/rest/admin/services/Hosted/Veier/FeatureServer?token=J5vz3shs-eMJbTtJSTEIiOE...' is not accessible: Error. java.security.cert.CertificateException: No name matching xyz found.</Msg>
I struggled with this error for a week, so decided to reinstall the whole environment. Everything was installed on Friday and the error disappeared - I tested couple of times, with different feature layers, from different machines, users, with different capabilities - no problem. I came to an office today, wanted to change capabilities and the error came again.
Has anyone experienced something similar?
I would appreciate any help.
Aleksandra
Accepted Solutions
Hello Jonathan og thank you for a quick response!
Yes, you are right, when I try to open https://xyz:6443/arcgis/rest/admin I get an error and invalid certificate. The same happens both internally on the server and externally on a local machine.
I am using two certificates in IIS. Domain certificate which contains wildcard and the name of my company and was imported as Root certificate in Portal and Server. And CA certificate which contains the name of the machine so the xyz in a URL and was imported and updated as Self Signed Certificate in Portal and Server. What is wrong there?
What can I do to fix the problem?
We have similar settings:
- a CA-signed wild card certificate *.xxxx.com (external) on web adaptor (xxxweb.xxxxcoxx.com) and we have no control of this certificate at all
- our hosted ArcGIS server https://xxxserver1.xxxxcoxx.com:6443, internal
- It is a multi-machine deployment (with two ArcGIS Server, the second one https://xxxserver2.xxxxcoxx.com:6443, internal)
- The federated server is: https://xxxweb.xxxxcoxx.com/server
- the Subject Alternative name of the wild card certificate is xxxx.com, not the domain name of the web adaptor server xxxxcoxx.com
The problem is, the above settings work fine for everything, except the tile layers settings, nothing is displayed:
The error is like this: "URL 'https://.../server/admin/services/Hosted/....MapServer?token=...U.&f=json' is not accessible: Error. No subject alternative DNS name matching xxxweb.xxxxcoxx.com found.."
When there is only one ArcGIS Server, the federated server is: https://xxxserver1.xxxxcoxx.com:6443/arcgis, everything works perfect, including this tile layer settings page.
My question is, why this happens to tile layer settings only, not to hosted feature service settings? And it seems to me that adding subject alternative DNS name of the web adaptor domain to the wild card certificate is the only solution?
