Jump to content
Welcome to our new Citrix community!
  • 0

XenMobile can't talk to PKI web enrollment server


Jeroen Tielen1709158489

Question

While setting up CBA I'm running into this error which is driving me crazy. 

 

I have 1 PKI server which hold all roles. 

I can access the certsrv page (username and password) and can request certificates. 

 

When configuring this server as a Microsoft Certificate Services Entity in XenMobile I cant test the connection. 

Error: Connection Failed. 

 

In the debug log I see the following: 

 

Quote

2019-01-04T05:30:16.39-0800 | 24B983A615E804A5  | ERROR | http-nio-14443-exec-3 | com.sparus.nps.pki.connector.MsCertSrvConnector | TestConnection to pki url [ certnew.cer] failed with response Headers: {null=[HTTP/1.1 401 Unauthorized], Server=[Microsoft-IIS/10.0], WWW-Authenticate=[Negotiate, NTLM], Content-Length=[1293], Date=[Fri, 04 Jan 2019 13:30:18 GMT], Content-Type=[text/html]}and Response Error: <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;} 
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;} 
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
 <div class="content-container"><fieldset>
  <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>
  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
 </fieldset></div>
</div>
</body>
</html>

 

I know 100% sure that the credentials are correct. The PKI server is a server 2016 and XenMobile is 10.9.0.12.

 

Anyone seen this strange behaviour before? 

Edited by jtielen418
Typo's
Link to comment

2 answers to this question

Recommended Posts

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...