SSL Certificates

Lawrence

Hello everyone,

At the response to my reddit post I am also submitting my issue here.

I have inherited an ArcGIS enterprise system. Currently on 11.0 and as of March 1st, everything was working fine.

Our SSL certificate gave notice that it was going to expire, and I then learned about the lack of a direct IT department to assist with obtaining a new wildcard certificate.
I did as much research as I could, and followed numerous tutorials along with side by side installs with an esri analyst. There was some great success.

However, I can now only access my portal, server, web apps, ANYTHING related to this system on my virtual machine.

CodyPatterson

Hey @Lawrence

There may be a chance that you have the certificate listed as a domain certificate only. Would you be able to verify that this certificate is CA signed and available to the public? If it is, what kind of error are you getting when you attempt to connect on a hotspot or outside of network? (I assume this was public previously)

Cody

Lawrence

The wildcard certificate has been purchased for the base domain *domain.net, verified ownership with name cheap, and successfully generated the sign request, plus the response from the CA.

The error only any other device "site can't be reached" or "server IP address cannot be found" I can ping to the virtual machine via the home device and other ones. (this error popped up during the last Esri call but has since been rectified)

CodyPatterson

Hey @Lawrence

Looks like you've gotten the right stuff! That moved onto possibly being a network problem. You've mentioned pinging, would you be able to try that off network via the public IP or the FQDN? That may tell us something about the connectivity.

I'm not sure about your IT department, but I would ask to see if they could run any network analysis tools, a firewall disabling test, and a few troubleshooting steps to get that checked out. It's hard to tell exactly where the issue is, but then again ESRI support typically does not assist with anything involving third party software unfortunately, but I have a similar setup so I'll try to help where I can!

Cody

RyanUthoff

So if I am understanding correctly, this issue happened immediately after updating your SSL certificates? Like, everything was working correctly before updating your SSL certificate, you updated your SSL certificate, and then you suddenly started having issues after?

Also, can you clarify what you mean my virtual machine? Are you referring to the VM that ArcGIS Enterprise is installed on? Or is this another VM that you work off of and ArcGIS Enterprise is installed elsewhere?

On your VM where you are able to access Portal, are you getting any certificate errors in your web browser when accessing the public URL? You should also be able to view your SSL certificate in your browser to verify it is using the correct one.

Regardless, I'm struggling to see how changing SSL certificates would cause this issue. You should still be able to access Portal from outside the VM, but if something was wrong with the SSL certificates, it would just give you a certificate warning.

If your old SSL certificate hasn't expired yet, you can try changing everything back to the old certificate and see if you're still encountering the issue.