Home
CERT+
Automate certificate lifecycle management including issuance, discovery, renewal, and deployment, across public and private trust CAs. Assess, prioritize, and plan your migration to quantum-safe encryption with the Quantum Trust Hub add-on module.
CERT+ Troubleshooting Guide
Troubleshooting for CAs
Troubleshooting for LetsEncrypt CA Issues

CERT+
Automate certificate lifecycle management including issuance, discovery, renewal, and deployment, across public and private trust CAs. Assess, prioritize, and plan your migration to quantum-safe encryption with the Quantum Trust Hub add-on module.
PKI+
Provision, govern and scale private trust certificates with a Post Quantum ready cloud based Enterprise PKI-as-a-Service.
SIGN+
Secure software, firmware, and containers with a comprehensive enterprise code signing solution.
SSH+
Control SSH access and key rotation at scale with an SSH key lifecycle management solution.
KUBE+
Unify DevOps and Security teams by managing certificates with a Kubernetes-native certificate lifecycle management solution.
DDI+
Manage domain registration, renewal, decommissioning, and other security controls with an end-to-end domain lifecycle management solution.
ADC+
Automate and orchestrate application delivery infrastructure at scale with an ADC lifecycle automation platform.
Platform
Manage policy and automation across all of the products and modules in the AVX ONE platform.
AppViewX Setup
Get detailed instructions for setting up AVX ONE in on-premises or SaaS deployments.
Release Artifacts
Review new features, fixes, and security advisories with official AppViewX release documentation.

Troubleshooting for LetsEncrypt CA Issues

This section helps you troubleshoot the common problems that you might encounter while using functionalities like setting addition, connectivity, certificate enrollment, renewal, revocation, and other actions associated with LetsEncrypt.

Supported Web Browsers

Table 1. Error messages and resolutions
Browser	Version	Notes
Firefox	Till latest (Version 84.0.4147.135)	NA
Chrome	Till latest (Version 80.0)	NA
IE	Limited support in 9, Full support from 10+	No support for IE9 post AppViewX Version 11.0
Safari	Till latest (Windows - Version 5.1.7, macOS - Version 13.1.2)	From AppViewX Version 11.1
Opera	Till latest (Version 70)	From AppViewX Version 11.1

Supported Devices

Table 2. Error messages and resolutions
Device	OS	Resolution
Desktop	Windows	1024 X 768 onwards, 1366x768, 1920x1080, Higher
Desktop	Linux	1024 X 768 onwards, 1366x768, 1920x1080, Higher
Desktop	Mac	1024 X 768 onwards, 1366x768, 1920x1080, Higher
iPad	iOS	1024 X 768

Issues in Configuring Let's Encrypt CA

Table 3. Error messages and resolutions
Error Message	Possible Cause	Possible Solution
Unable to save CA settings. CA settings name already exists.	A CA setting with the same name for LetsEncrypt already exists in inventory.	Check the CA Setting name, it should be unique.
Please validate given information	Invalid URL given.	Please check the URL.
	LetsEncrypt portal might be down.	Please check any problem in the LetsEncrypt portal.
	Proxy might be required.	Please check the proxy required for this environment. Proxy details may not be configured in proxy settings.
This field should not be null or empty.	Some of the mandatory fields might be missing or might be invalid.	Add all the valid information in the mandatory section.
Mandatory Field(s) - <Field name> is/are empty
CA Settings - [ <Fields>] mandatory fields cannot be empty.
Invalid Email Id	Email ID given while account creation is invalid.	Provide valid email ID.

Issues in Enrolling a Let's Encrypt CA Certificate

Table 4. Error messages and resolutions
Error Message	Possible Cause	Possible Solution
Invalid proxy details specified.	Proxy detail is not configured in proxy settings or is invalid.	Provide valid proxy details.
Invalid Authorization	Authorization failed while fetching the challenge.	Provide valid CSR details in the request to receive valid order details in the CA response.
Challenge Not Found	Challenge not received from CA.	Provide valid CSR details in the request to receive valid order details in the CA response.
Error during calculating thumbprint	Invalid public key or publicjsonweb key.	Provide valid details while adding the LetsEncrypt account.
Timeout while Validating Challenge	Challenge verification was not completed within the time limit.	Verify the challenge within the time limit or generate a new challenge and verify.
Challenge Verification Failed	Challenge verification returned status as Invalid from CA.	Check if the internet or proxy is enabled. Check if the TXT record has been added correctly.

Issues in Renewing a Let's Encrypt CA Certificate

Table 5. Error messages and resolutions
Error Message	Possible Cause	Possible Solution
Invalid proxy details specified.	Proxy detail is not configured in proxy settings or is invalid.	Provide valid proxy details.

Issues in Revoking a Let's Encrypt CA Certificate

Table 6. Error messages and resolutions
Error Message	Possible Cause	Possible Solution
Invalid proxy details specified.	Proxy detail is not configured in proxy settings or is valid.	Provide valid proxy details.
Content Extraction Failed	Unable to get encoded X509 certificate using its content.	Provide valid certificate content for the certificate to be revoked.

Issues in Validating Let's Encrypt CA Connectivity

Table 7. Error messages and resolutions
Error Message	Possible Cause	Possible Solution
Communication with CA failed.	Proxy details provided may be incorrect.	Provide valid proxy details.
Communication with CA failed.	Invalid LetsEncrypt Account Id.	Provide valid credentials associated with a valid account.

Issues in Sending REST Requests to Let's Encrypt CA

Table 8. Error messages and resolutions
Error Message	Possible Cause	Possible Solution
In getKeyStore(), While getting instance for the keystore and loading the store file	Unable to read keystore file “avx_client_cert_keystore” from security path, i.e. $(JAVA_HOME}/lib/security/	Internal error. Possibly a deployment issue. Contact support team.
In createStore(), While traversing to java security folder	Java security directory is missing or is corrupted.	Internal error. Possibly a deployment issue. Contact support team.
In createStore(), While getting the instance for the keystore	Unable to get Keystore instance.	Internal error. Possibly a deployment issue. Contact support team.
In createStore(), While loading the key store	Unable to load keystore.	Internal error. Possibly a deployment issue. Contact support team.

AppViewX