Magic Mike
New Member
- Messages
- 1
- Reaction score
- 0
- Points
- 1
When I try to issue this command:
Invoke-RestMethod -Method 'Get' -Uri "https://<site server fqdn>/AdminService/wmi/<Site Name>" -UseDefaultCredentials
I get this error:
The remote certificate is invalid because of errors in the certificate chain: PartialChain
We are using Enhanced HTTP, so IIS port 443 is bound to the "SMS Role SSL Certificate" issued by "SMS Issuing". The only problem I see with this certificate when viewing it in IIS is on the 'Certification Path' tab, which lists only 'SMS Role SSL Certificate' with a certificate status of "The issuer of this certificate could not be found."
I noticed there is no certificate for 'SMS Issuing' in the local computer's Trusted Root Certification Authorities store. Is that supposed to be added manually, or should it have been added there automatically when Enhanced HTTP was enabled in the Configmgr console?
When I visit the URI above in Edge, I get a warning that I have to override to get the xml response: NET::ERR_CERT_AUTHORITY_INVALID.
Invoke-RestMethod -Method 'Get' -Uri "https://<site server fqdn>/AdminService/wmi/<Site Name>" -UseDefaultCredentials
I get this error:
The remote certificate is invalid because of errors in the certificate chain: PartialChain
We are using Enhanced HTTP, so IIS port 443 is bound to the "SMS Role SSL Certificate" issued by "SMS Issuing". The only problem I see with this certificate when viewing it in IIS is on the 'Certification Path' tab, which lists only 'SMS Role SSL Certificate' with a certificate status of "The issuer of this certificate could not be found."
I noticed there is no certificate for 'SMS Issuing' in the local computer's Trusted Root Certification Authorities store. Is that supposed to be added manually, or should it have been added there automatically when Enhanced HTTP was enabled in the Configmgr console?
When I visit the URI above in Edge, I get a warning that I have to override to get the xml response: NET::ERR_CERT_AUTHORITY_INVALID.
