Mar 29 2018
03:17 AM
- last edited on
Nov 30 2021
10:09 AM
by
TechCommunityAP
Mar 29 2018
03:17 AM
- last edited on
Nov 30 2021
10:09 AM
by
TechCommunityAP
I have 2 DC controllers running in Azure connected to On-Prem domain with on-prem DC. The On-prem DC are Lightweight gateway are running fine but the 2 DC in IaaS (Azure cloud ) are not working Service status stopped.
Error in the Gateway Log folder for Both DC's in the cloud
Error [WebClient+<InvokeAsync>d__8`1] System.Net.Http.HttpRequestException: PostAsync failed [requestTypeName=UpsertGatewayMonitoringAlertRequest] ---> System.Net.Http.HttpRequestException: An error occurred while sending the request. ---> System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel.
at System.Net.HttpWebRequest.EndGetRequestStream(IAsyncResult asyncResult, TransportContext& context)
at System.Net.Http.HttpClientHandler.GetRequestStreamCallback(IAsyncResult ar)
please advise how i can solve this problem.
Mar 29 2018 03:25 AM
Can you check if you have any of the following registry keys set on the failing machine or the center?
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL]
"DisableRenegoOnServer"=dword:00000001
"DisableRenegoOnClient"=dword:00000001
If yes, please try while they are set to 0 (default).
Mar 29 2018 03:30 AM
thanks for you reply.
the registry keys weren't present on the failing servers and ATA center. However i have tried doing this as i read your article and no luck here -thanks
Mar 29 2018 03:35 AM
Are you able to access the console UI from the failing GWs using Internet Explorer without any errors?
Mar 29 2018 03:40 AM
Yes i can - I added the ATA console via IE trusted site but i see certificate error in the browser. I installed the certificate for local user and current user.
Mar 29 2018 03:42 AM
Mar 29 2018 03:42 AM
Mar 29 2018 03:42 AM
the certificate issue is not an issue, i would like to fix the Light weight gateway servers..thanks
Mar 29 2018 05:16 AM
The LWGWs are talking to the same endpoint you are reaching when using IE,
only they are less tolerant to issues.
What was the exact error you got about the certificate in IE?
Mar 29 2018 05:23 AM
Yes correct the LGW are talking to the same ATA center.
The error was certificate error via IE stating it not secure etc but this can be ignored as i can log on to the console successfully from LGW's servers
Mar 29 2018 05:29 AM
Can you check the Updater log and see if you have a line with this exact text inside:
Warn [OwinContextExtension] Sending retry request [Client certificate doesn't exist]
Mar 29 2018 05:41 AM
Mar 29 2018 05:41 AM
okay i have checked all the updater logs and i performed a search for the following
Client certificate doesn't exist
Nothing was found
Mar 29 2018 06:13 AM
OK,
Then we rolled out "known issues".
I strongly suggest at this point to open a case with support and have a support engineer on it
to collect more data and help troubleshoot.
Jul 23 2018 03:49 AM
Jul 23 2018 04:35 AM
Hi, yes the fix was to update the agent on the affected machines and the ata server
Jul 23 2018 04:56 AM
Jul 23 2018 05:22 AM
I also notice within the ATA center, the LG keeps complaining the service stating says starting, to me this is an issue afterll
Jul 23 2018 05:22 AM
I also notice within the ATA center, the LG keeps complaining the service stating says starting, to me this is an issue afterall