Thursday, 7 January 2016

Refresh Trusted Security Token Services Metadata feed - Failed (After deploying workflow manager)

After deploying workflow manager we have to run the Refresh Trusted Security Token Services Metadata feed job else the Workflows we start will cancel out.

If you get an error (The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) after running the above job , please follow the steps below...

 Exporting Certificates to Client Machines (Workflow Manager 1.0)

If you want clients to be able to connect to a Workflow Manager management endpoint or Service Bus gateway to configure an auto generated SSL certificate, export the auto generated SSL certification authority (CA) and revocation list (CRL) to those clients. Use the following procedure:
  1. On the machine where server is installed open the Workflow Manager PowerShell console and use Get-WFAutoGeneratedCA cmdlet to export the Certification Authority and Revocation list. If you do not provide file names, this cmdlet will export Certification Authority to AutoGeneratedCA.cer
  2. Copy the file to the client machine.
  3. On the client machine open an MMC window, and add the Certificates snap-in, pick the Computer Account and Local Computer options when asked.
  4. In the MMC window, right click the Certificates\Trusted Root Certification Authorities, open All Tasks, and select Import. Select the AutoGeneratedCA.cer file and import it.
At this point you should be able to trust connections from that particular client. The CER format exports only the public key, not the private key.

No comments:

Post a Comment