FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Dynatrace Managed certificate failure

Go to solution
jason_jenkinson
Participant

‎16 Aug 2018 08:25 AM

Hi

I have deployed DynaTrace Managed and all goes well on install, however when launching the URL I see the following event.

SecurityException: Cannot register cluster with OPC: OPCFailedRequestException: request failed - SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target - https://opcsvc.ruxit.com/rest/public/v3.0/registr...

I have checked with our firewall team and they are stating it is an issue with the Root CA.

I don't have much coverage with linux but has anyone seen this issue before.

Thanks in advance

Jason


Reply
6 REPLIES 6

Go to solution
JamesKitson
Dynatrace Guru
Dynatrace Guru

‎16 Aug 2018 08:42 AM

Are you connecting to MC through a proxy?


Reply

Go to solution
Radoslaw_Szulgo
Dynatrace Guru
Dynatrace Guru

‎16 Aug 2018 09:29 AM

I'm investigating that. I'll keep you updated.


Senior Product Manager,
Dynatrace Managed expert
Reply

Go to solution
Radoslaw_Szulgo
Dynatrace Guru
Dynatrace Guru

‎16 Aug 2018 09:36 AM

Seems your proxy/firewall does not allow you to connect to https://mcsvc.dynatrace.com

nor as a fall back to https://opcsvc.ruxit.com


I bet your proxy/firewall server has self-signed (or non CA-signed) certificate. In that case you need to add that certificate to dynatrace truststore. See

https://www.dynatrace.com/support/help/installatio...

for details.


Senior Product Manager,
Dynatrace Managed expert
Reply

Go to solution
jalpeshs
Organizer
In response to Radoslaw_Szulgo

‎07 May 2019 08:54 AM - last edited on ‎24 Mar 2021 05:56 AM by Community Team

Hi Radoslaw,

I am facing same issue.

But During installation proxy worked I got connected message in putty

But for mission control connection it's showing this error.

Is it sufficient to include https://mcsvc.dynatrace.com. URL??

Please suggest.

 

Reply

Go to solution
Radoslaw_Szulgo
Dynatrace Guru
Dynatrace Guru
In response to Radoslaw_Szulgo

‎13 May 2019 01:45 PM - last edited on ‎24 Mar 2021 05:56 AM by Community Team

Yes, as documentation states - mcsvc.dynatrace.com is sufficient to include. But if you have a proxy with a self-signed certificate you need to import that certificate into the keystore. This help page might help:

 

https://www.dynatrace.com/support/help/setup-and-configuration/dynatrace-managed/configuration/how-t...

 

Senior Product Manager,
Dynatrace Managed expert
Reply

Go to solution
Julius_Loman
DynaMight Guru
DynaMight Guru

‎16 Aug 2018 12:57 PM

It seems to me that your company is doing man-in-the-middle inspection for SSL/TLS traffic. If this is the case, adding the local company CA certificate to the server truststore will help, just as @Radoslaw S. suggests.


Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner
Reply
Ask a question