https://4c4806b4.configjon-blog.pages.dev/category/certificates/Recent content in Certificates on Jon's NotesHugoen-usSat, 06 Apr 2019 00:00:00 +0000https://4c4806b4.configjon-blog.pages.dev/management-point-root-ca-trust-issue-http-403/Sat, 06 Apr 2019 00:00:00 +0000https://4c4806b4.configjon-blog.pages.dev/management-point-root-ca-trust-issue-http-403/<p>I was setting up a Configuration Manager environment in HTTPS mode and I was running into issues with the server selecting a client authentication certificate.</p> <p>I was seeing these messages in the <strong>MPControl.log</strong>.</p> <p><img loading="lazy" src="https://4c4806b4.configjon-blog.pages.dev/management-point-root-ca-trust-issue-http-403/images/Certificate_Error-1024x243.png"></p> <p>I was seeing this message in the <strong>IIS log</strong>.</p> <p><img loading="lazy" src="https://4c4806b4.configjon-blog.pages.dev/management-point-root-ca-trust-issue-http-403/images/IIS_Error-1.png"></p> <p>I was getting a <strong>2148204809</strong> error which translates to <strong>A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.</strong> That told me something was wrong with the root CA trust. Some searching online brought up a few useful posts on the subject.</p>