1 Reply Latest reply on Nov 5, 2009 8:16 AM by sriley

    echec de reception de certificat

    Rookie

      Bonjour,

       

      je n'arrive pas à recupérer le certificat lorsque j'utilise un VPN pour connecté le brokerconfig au core.

       

      si je suis sur le LAN, c'est OK

      Si je suis à l'exterieur de mon réseau et que je me connecte via la passerelle c'est OK

       

      mais je souhaite aussi que mes agents puissent recupéré le certificat depuis les agences distantes.

      ainsi, je peut automatiser le déploiement des credentiels de la gateway.

       

      Pour info, depuis mes agences, depuis un poste client

       

      telnet core 80 = ok

      telnet GW 80 = ok

       

      telnet core 443 = ok

      telnet GW 443 = ok

       

      brokerconfig.log :

      Thu, 05 Nov 2009 15:01:30 PostCertificate() posting cert to host FRPOI-LMS, proxy
      Thu, 05 Nov 2009 15:01:30 PostCertificate() StartSession returned 0
      Thu, 05 Nov 2009 15:01:30 PostCertificate() request returned 0
      Thu, 05 Nov 2009 15:01:30 PostCertificate() Write returned 0
      Thu, 05 Nov 2009 15:01:30 PostCertificate() Response returned 0, status of 202
      Thu, 05 Nov 2009 15:06:30 GetCertificate() File did not appear after 300 seconds
      Thu, 05 Nov 2009 15:07:58 Response problem; ret = 0, status = 401
      Thu, 05 Nov 2009 15:08:17 Response problem; ret = 0, status = 401
      Thu, 05 Nov 2009 15:13:42 PostCertificate() posting cert to host FRPOI-LMS, proxy
      Thu, 05 Nov 2009 15:13:42 PostCertificate() StartSession returned 0
      Thu, 05 Nov 2009 15:13:42 PostCertificate() request returned 0
      Thu, 05 Nov 2009 15:13:42 PostCertificate() Write returned 0
      Thu, 05 Nov 2009 15:13:43 PostCertificate() Response returned 0, status of 202
      Thu, 05 Nov 2009 15:18:43 GetCertificate() File did not appear after 300 seconds
      Thu, 05 Nov 2009 15:28:41 PostCertificate() posting cert to host FRPOI-LMS, proxy
      Thu, 05 Nov 2009 15:28:41 PostCertificate() StartSession returned 0
      Thu, 05 Nov 2009 15:28:41 PostCertificate() request returned 0
      Thu, 05 Nov 2009 15:28:41 PostCertificate() Write returned 0
      Thu, 05 Nov 2009 15:28:41 PostCertificate() Response returned 0, status of 202
      Thu, 05 Nov 2009 15:33:41 GetCertificate() File did not appear after 300 seconds
      Thu, 05 Nov 2009 15:33:54 Response problem; ret = 0, status = 401
      Thu, 05 Nov 2009 15:35:31 Response problem; ret = 0, status = 401

       

      test brokerconfig mode GW

      04:11.093   Attempting managment gateway connection at host  and address 94.228.184.186
      04:11.093   Starting HTTPS session with host 94.228.184.186, proxy "", and proxy user ""
      04:11.093   Connecting to address 94.228.184.186
      04:11.437   Waiting for link connection to core through managment gateway
      04:11.437   Begining link request
      04:11.437   HTTPS Request: POST /services/link
      04:11.437   Waiting for match response
      04:11.437   Waiting for HTTPS response
      04:11.515   HTTPS response finished status 201 description Created
      04:11.515   Creating session from client computer through managment gateway to core computer
      04:11.609   Starting long session client
      04:11.750   Match request completed 0 Success
      04:11.750   Link to core successful
      04:11.750   HTTPS Request: POST /landesk/managementsuite/core/core.secure/BrokerCertificateRequest.asmx
      04:11.750   Waiting for HTTPS response
      04:12.578   HTTPS response finished status 200 description OK

      test brokerconfig mode direct core

      05:29.390   Attempting Direct HTTP connection to host FRPOI-LMS:80
      05:29.390   Starting HTTP session with host FRPOI-LMS:80, proxy "", and proxy user ""
      05:29.406   Connecting to address 172.17.10.10
      05:29.406   Direct connection succeeded
      05:29.406   HTTP Request: POST /landesk/managementsuite/core/core.secure/BrokerCertificateRequest.asmx
      05:29.406   Waiting for HTTP response
      05:29.625   HTTP response finished status 401 description Unauthorized

       

      merci

        • 1. Re: echec de reception de certificat
          sriley SupportEmployee

          Il y a deux articles que je regarderais pour automatiser obtenir les certs de courtier à vos machines extérieures:

           

          http://community.landesk.com/support/docs/DOC-7084

          http://community.landesk.com/support/docs/DOC-1888

           

          Un couple d'autres quesitons :

          1. Quand vous courez-vous brokerconfig.exe en dehors de votre réseau, mettez-vous un utilisateur de LANDesk dans les domaines de nom d'utilisateur et de mot de passe ?

          2. Si vous vérifiez les machines qui aren' ; t obtenant le certificat de courtier. Vont aux dossiers de programme \ dossier de LANDesk \ à fichiers centraux communs \ cbaroot \ CERT et ouvrent votre .0 dossier avec le bloc - notes. Assurez-vous qu'il a l'information de raccordement de passage au fond de lui.

           

          Désolé, ceci a été fait avec le babelfish ainsi j'espère la traduction est correcte, et j'espère que j'ai compris votre question correctement.

           

          SRR