Hi,
I am having a problem with TLS Mutual Authentification. I am getting all the time this error:
"Category: Certificate store Source: vProConfigurationInternal.cpp : vProConfigurationNamespace::vProConfigurationInternal::TestConnection Line: 1202: Valid certificates for SSL connection not found. Certificate for Mutual TLS"
Running ACUconfig systemdiscovery command on the vPro client confirmed that the Certificate was indeed added to intel ME. Double checked the certificate and it's valid (The Cert. Template was created according to the SCS User manual.)
I found this though in the intel documentation.
"If mutual TLS authentication is enabled, any applications that interact with the device must supply client certificates that the device uses to authenticate the applications"
does this mean that we need to issue a "Client Authentication" Certificate for the SCS Server and install it in the System Account Store (RCS Service is running under the bult-in Network Service account)??
PS: The only certificate installed on the SCS server is the Prov. Cert. issued by a 3rd party CA (using the "For Intel AMT use" checkbox on the CA Req. Website) and it was validated by the RCSutil tool. It is only valid for ZTC but not Mutual TLS
"The certificate is not valid for Intel(r) RCS Mutual TLS(HTTPS) connection and is valid for Intel(r) RCS remote PKI(ZTC)"
Any ideas?
Thanks
A.S.M