Offline root CA, Horizon View and Revocation check issues

It happens that you log on to your environment and that the dashboard is red, all certificate signed servers are red. This happened to me this morning, returned to a project at a customer and logging on to the VMware Horizon View dashboard all servers coloured red. Investigating the debug log (copy the file before you can open it) showed that the revocation check failed.

At first I was baffled as it had been working fine for days already, the only thing we changed was that we added VMware NSX to the backend.. how can that be intrusive 😉 . It was not of any importance to the issue, the real problem was a configuration fault, very simple but very annoying when you don’t expect it. Let me explain.

Offline root

We run a internal Microsoft CA and we run a rootCA and a intermediateCA. The rootCA is offline for security reasons so the intermediate is the one doing all the work. Because of the root being offline the revocation check is not possible when it is expired, the root CA is handling this and he or she is offline not able to renew.

Read the entire article here, Offline root CA, Horizon View and Revocation check issues

via Rob Beekmans.net

RobBeekmans.NET by Rob Beekmans Rob Beekmans is a 26 year IT vetaran that worked in many fields in IT before he joined PQR 7 year ago. Rob is a senior consultant with a strong focus on Application and desktop delivery, User Environment Management, Mobility and monitoring. Rob is a VMware vExpert and is a member of the VMware EUC-Champions group. Rob shares his vision and insights on his personal blog, on webinars or on stage.

| LATEST FEATURED RESOURCES

White Papers

Application Lifecycle Management with Stratusphere UX – White Paper

Enterprises today are faced with many challenges, and among those at the top of the list is the struggle surrounding the design, deployment, management and operations that support desktop applications. The demand for applications is increasing at an exponential rate, and organizations are being forced to consider platforms beyond physical, virtual and cloud-based environments. Users […]

2018 Will Be The Year of Citrix Migration! eG Innovations and DABCC Survey Reveals Industry Trends for XenApp and XenDesktop 7.x Migration

IGEL Community Releases Free “How-To Install and Configure the IGEL Software Platform” Made Easy Book

IGELl’s Security Enhancements for Thin Clients – White Paper

White Paper: IT Performance Monitoring Tools – Reading Between the Lines

Does Deploying Citrix in the Cloud Make Performance Monitoring Easier? – White Paper

View All White Papers >>

Downloads

Download Commvault VM Backup and Recovery: end-to-end VM backup, recovery and cloud management

Commvault’s ability to provide end-to-end VM backup, recovery and cloud management creates a significantly better way to build, protect and optimize VMs throughout their lifecycle. Our best-in-class software for VM backup, recovery and cloud management delivers a number of significant benefits, including: VM recovery with live recovery options; backup to and in the cloud; custom-fit […]

Download Commvault Data Platform: enterprise-wide data protection and management

Download ‘NAKIVO Backup & Replication for VMware, Hyper-V, and AWS EC2’ Full-Featured Free Trial

Download deviceTRUST Dynamic context awareness for Citrix

Download NAKIVO Free VM Backup and Replication for VMware & Hyper-V

FREE eG Enterprise Logon Simulator for Citrix XenApp and XenDesktop

View All Downloads >>

On-Demand Webinars

What’s Going on in EUC Printing – A Technical Deep Dive!

The IGEL Community and ThinPrint invite you to watch the following technical deep dive webinar. The agenda is to technically bring you up to speed on what’s going on in the EUC Printing space today along with a deep dive into new methods, technologies, printing scenarios and a discussion on why printing still matters. You […]