Customer Knowledge Base
Collection of articles providing answers to situations or problems one might encounter when running Venafi Products > Sync'd to the Community
CodeSign Protect (Cameron Miner)
Documentation
- ★ Info: Palo Alto Network FW Application objects are being changed to Basic App Objects after upgrading
- Venafi not affected by SolarWinds vulnerability
- Info: Venafi Trust Protection Platform 20.x Documentation
- Scanafi 2.2.2 is live!
- How To: Resolve "the certificate is not a valid pfx/pkcs#12 certificate" error when importing a certificate
- How to: Connecting a TPP server to a segmented Workgroup server
Tips and Tricks
Aperture
- Issue: Aperture Discovery Targets may be modified or moved after saving.
- Error: Aperture Error screen after upgrade
- How To: Troubleshooting Login slowness
- How to: Create a Custom Report in Aperture
- Info: Updates to Groups and Work functionality (beginning with Trust Protection Platform 17.2)
- Info: Customizing the labels and style of the Aperture Login Page
Venafi VaaS (Cloud) (Nick Lashley)
Announcements
- ★ Customer Enhancement Requests Have a New Home
- ★ How To: Subscribe to Announcements forum
- Info: Venafi Trust Protection Platform 21.2.0 Is Released
- Info: Venafi Trust Protection Platform 19.1.6 Patch Is Released
- Announcement: Scanafi 2.2 is live
- Info: Venafi Trust Protection Platform 19.4 Is Released
Core Product
- ★ How to get downloads from Venafi's Download Server
- ★ How to: Apply a Venafi Patch
- ★ Info: Venafi Product Life Cycle
- ★ Info: Looking for Venafi documentation?
- Error: Venafi Updater errors out with a 'Keyset is Not Defined' error
- How To: Modify The Timeout Interval For Aperture
TrustAuthority/TrustForce for TLS
- Error: "The Payment method selected for this request is not currently enabled" at stage 500 with Digicert
- Info: Default ports used for provisioning
- Info: Testing Functionality Of Cyberark Connectivity Outside Of Trust Protection Platform (TPP)
- Info: Truststore provisioning commands and permissions
- Disable TLS 1.0 and 1.1 on windows server.
- New Digicert Symantec SubCA Hierarchy
SSH (Aaron Poteat)
- Issue: Digicert Protocol Violation "CR must be followed by LF"
- TPP Supported SSH Protocols and Ciphers
- Error: Agentless SSH Device error "Failed To Connect. Agent or agentless record is already registered for this hostname"
- Issue: Test Connection for Agentless SSH product never completes
- Info: Configuring Privileged Access Management Integration
- Info: Registering custom encryption keys
Venafi Agent
- Info: Venafi Server Agent Basics and Troubleshooting
- Info: Unofficial List of Agent Error codes and messages
- Info: Agent Certificate Discovery Placement Logic
- Verifying the signature of the Server Agent Linux RPM
- How To: Silent Install Windows Server Agent
- How To Generate the Server Certificate Thumbprint for the VOC
System Requirements
Security
- INFO: Rotating Trust Protection Platform's DBO/Operational/AD service account passwords
- Validate Cipher Suites Offered to Servers from Windows
- How To: Enable the use of Legacy Cipher Suites
- How to Verify the Digital Signature of Venafi Installation Files
- Failed to launch CA Communication process: Access is Denied
- Certificate CN Referencing Hostnames or Private IP Addresses
Enterprise Mobility Protect
- Error: User Portal getting "This page could not be loaded" error after upgrade
- Complete uninstallation of User Agent for macOS
- How To: Pre-configure User Agent for macOS and signing the application bundle
- Error: "Failed to unwrap inner PKCS7" when doing SCEP requests
- How to: Customize Terminology of End User Portal
- Info: Mobile Certificate Manager Basics
Certificate Authorities
- Issue: Error when attempting to renew the Entrust CA Certificate Credential's Cert
- "Access denied due to missing_permission_container" Error when Posting CSR to Digicert CA
- Error: "Failed to post CSR with error: The issuing CA is not Valid" at stage 500
- How To: Changing the Enrollment URL for Digicert/Symantec Customers
- Symantec MPKI URL Change
- Error: When Validate Entrust.Net CA template throws Unable to connect to remote server error