Customer Knowledge Base
Collection of articles providing answers to situations or problems one might encounter when running Venafi Products > Sync'd to the Community
Cert-Manager
Product Training (Tom Baird)
Zero Touch PKI (ZTPKI) (Laker Cook)
CodeSign Protect (Aaron Poteat)
Documentation
- Info: Primary Support Engineer (PSE) Brochure
- Info: Palo Alto Network FW Application objects are being changed to Basic App Objects after upgrading
- Venafi not affected by SolarWinds vulnerability
- Info: Venafi Trust Protection Platform 20.x Documentation
- Scanafi 2.2.2 is live!
- How To: Resolve "the certificate is not a valid pfx/pkcs#12 certificate" error when importing a certificate
Tips and Tricks
- ★ How To: Identify Entrust Issued Certificates and Reissue with another CA
- Info: Kill a hung service
- Issue: Unable to choose "Virtual Servers" after upgrade
- How To: Configure SCEP - Cisco IOS
- Scanafi CLI Error Codes for Troubleshooting.
- How to: Export IIS logs
Aperture
- Can I use the Time Stamp Service outside of CSP?
- How To: Toggle "Create Team" Button
- Issue: Aperture Discovery Targets may be modified or moved after saving.
- Error: Aperture Error screen after upgrade
- How To: Troubleshooting Login slowness
- How to: Create a Custom Report in Aperture
TLS Protect Cloud (VaaS)
- ★ Issue: An error occurred while attempting to provision
- Info: Migrate Certificates to New Certificate Authority
- Issue: Applications in TLS Protect Cloud have no endpoints if validation doesn't run
- Info: What are the session timeouts for the Venafi Control Plane UI
- How To Create GlobalSign Atlas Credential for TLSPC
- Info: Login to TLS Protect Cloud with a local account
TPP Troubleshooting
- Antivirus exclusions and recommendations
- Can I use a macro in a custom field?
- Failed to Load PKCS11 Keystorage Driver
- Issue: HTTP 405 Error: "Method Not Allowed" when making the /vedauth/authorize/oauth API call
- Error connecting to the Log Server
- Issue: Uninstalling Venafi Trust Protection Platform fails via Control Panel
Announcements
- ★ Info: Venafi Trust Protection Platform V23.3 Is Released
- ★ Export license required for certain countries
- ★ How To: Subscribe to Announcements forum
- Info: Venafi Trust Protection Platform 24.3.1 is Released
- Venafi and CyberArk Acquisition Support FAQ
- Info: 23.3.5 Patch Is Released
Core Product
- ★ Info: Venafi Product Life Cycle
- ★ Info: Where can I find Venafi Documentation?
- Info: Venafi Warrior Community - Your connection to the Resource Hub
- Error: Operational certificate could not be stored in CAPI: Certificate chain not found.
- Error: Services fail to start with "Error 17: The system cannot move the file to a different disk drive"
- Updated Trust Protection Platform 24.1 & 24.3 Upgrade Processes
TrustAuthority/TrustForce for TLS
- ★ Info: How do you turn off validation for your certificates?
- Info: PKCS#12 Format is not available for Certificate Download
- Info: Restarting your Apache server via workflow
- Error: "The Payment method selected for this request is not currently enabled" at stage 500 with Digicert
- Info: Default ports used for provisioning
- Info: Testing Functionality Of Cyberark Connectivity Outside Of Trust Protection Platform (TPP)
SSH (Aaron Poteat)
- Issue: Digicert Protocol Violation "CR must be followed by LF"
- Error: Agentless SSH Device error "Failed To Connect. Agent or agentless record is already registered for this hostname"
- Issue: Test Connection for Agentless SSH product never completes
- Info: Configuring Privileged Access Management Integration
- Info: Registering custom encryption keys
- Info: Server Agent SSH Discovery Job appears to hang on NIX system
Venafi Agent
- Info: How does Server Agent determine hostname displayed in registered clients?
- Info: Venafi Server Agents rolling release installation
- Info: What is vagentmc.exe?
- Info: Venafi Server Agent Basics and Troubleshooting
- Info: Unofficial List of Agent Error codes and messages
- Info: Agent Certificate Discovery Placement Logic
System Requirements
Security
- How To: Report Security Vulnerabilities for Venafi Products
- Venafi Product Security Advisory - OpenSSL Critical Vulnerability Disclosure
- Log4J CVE-2021-45105 Vulnerability notice
- Log4j CVE-2021-45046 Vulnerability Notice
- Log4j CVE-2021-44228 Zero-Day Vulnerability notice
- INFO: Rotating Trust Protection Platform's DBO/Operational/AD service account passwords
Enterprise Mobility Protect
- Error: User Portal getting "This page could not be loaded" error after upgrade
- Complete uninstallation of User Agent for macOS
- How To: Pre-configure User Agent for macOS and signing the application bundle
- Error: "Failed to unwrap inner PKCS7" when doing SCEP requests
- How to: Customize Terminology of End User Portal
- Info: Mobile Certificate Manager Basics
Certificate Authorities
- CA Template Doesn't Use a Specified Engine when Validating or Retrieving
- Revoked Certificates still appear in Expiration Notifications
- Issue: Adaptable Digicert Import Script Slow/Pausing
- Info: Venafi Impact Of Digicert API Changes October 2022
- "Access denied due to missing_permission_container" Error when Posting CSR to Digicert CA
- Error: "Failed to post CSR with error: The issuing CA is not Valid" at stage 500