VMware Workspace ONE Community
lmtan286
Contributor
Contributor

Enterprise service FQDN response: Unable to get certificate from the URL:

I have two Connection Server  21.06 join domain lab.local with hostname:

 - conn01.lab.local

- conn02.lab.local

So, I use certificate *.lab.com for two connection server and change external url: conn01.lab.com, conn02.lab.com.

I deploy WS1 Access 21.08 with hostname ws1acc01.lab.com and WS1 Connection Server join domain lab.local with hostname: ws1conn01.lab.local

When I create new Virtual App Collection on WS1 show error Enterprise service ws1conn01.lab.local (EIS) response: Unable to get certificate from the URL: https://conn01.lab.local:443/SAML/metadata/sp.xml 

As error, WS1 connection server can't verify cert SSL from Connection Server because COnnection Server use cert *.lab.com, does not match with hostname conn01.lab.local of Horizon Connection server.

I think if Ws1 connection server use URL:  https://conn01.lab.com:443/SAML/metadata/sp.xml, its can connect to Connection Server.

How to change Ws1 connection server use https://conn01.lab.com:443/SAML/metadata/sp.xm replace https://conn01.lab.local:443/SAML/metadata/sp.xml 

Anyone have solution?

Thank you so much.

Reply
0 Kudos
21 Replies
funmix_1
Contributor
Contributor

@aralesaharhave follow the exact step to import horizon connection certificate, still facing the same issue.

anyone who success can advise? i have imported both domain.local and domain.com, no luck

Reply
0 Kudos
aralesahar
VMware Employee
VMware Employee

Hi @funmix_1 ,

Can you please elaborate, which steps did you take exactly ? have you tried the "Resolution" mentioned in the article i've shared earlier ? What was the result of the command ? what is the exact error you see in the log ?

Reply
0 Kudos