SharePoint服务器事件查看器中的外部证书错误 [英] External certificate error in SharePoint server event viewer

查看:119
本文介绍了SharePoint服务器事件查看器中的外部证书错误的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

我们有许多面向互联网的主机托管网站集,每个网站都有其自己的证书.对于某些证书,我们在Web服务器的事件查看器中收到此错误

操作失败,因为以下证书存在验证错误:主题名称:CN = www.xxxxxxxx.com,O = xxxxx,L = xxxx,S = xxxx,C = xx,SERIALNUMBER = xxxxxxx,OID.2.5.4.15 = xxxxxx, OID.xxxxxx = xxxxxx,OID.1.3.6.1.4.1.311.60.2.1.3 = xx发行方名称:CN = xxxxxx CA-G4,O = xxxxt Inc.,C = xx Thumbprint:xxxxxxxx 错误: PartialChain:无法将证书链构建到受信任的根颁发机构. RevocationStatusUnknown: 吊销功能无法检查证书的吊销. OfflineRevocation:吊销功能无法检查吊销,因为吊销服务器处于脱机状态.

这些Internet证书甚至都没有托管在SP中.

有什么主意吗?

解决方案

您好,spadminspadmin,

要解决此问题,您可以获取"SharePoint根授权"证书作为物理(.cer)文件,并将其导入所有SharePoint 2013服务器上的受信任的根证书"存储中.

通过PowerShell命令获取根证书.


rootCert =(Get-SPCertificateAuthority).RootCertificate


rootCert.Export("Cert")|设置内容C:\ SharePointRootAuthority.cer-编码字节

更多参考文献:

PartialChain:无法将证书链构建到受信任的根颁发机构.

https://ammarhasayen.com/2016/01/

最诚挚的问候,

萨拉范


Hi,

We have many internet facing host named site collections and each has its own certificate. We are getting this error in the event viewer of the web servers for some of the certificates

An operation failed because the following certificate has validation errors:  Subject Name: CN=www.xxxxxxxx.com, O=xxxxx, L=xxxx, S=xxxx, C=xx, SERIALNUMBER=xxxxxxx, OID.2.5.4.15=xxxxxx, OID.xxxxxx=xxxxxx, OID.1.3.6.1.4.1.311.60.2.1.3=xx Issuer Name: CN=xxxxxx CA - G4, O=xxxxt Inc., C=xx Thumbprint: xxxxxxxx  Errors:   PartialChain: A certificate chain could not be built to a trusted root authority.  RevocationStatusUnknown: The revocation function was unable to check revocation for the certificate.  OfflineRevocation: The revocation function was unable to check revocation because the revocation server was offline.  

These certificates of the internet sites are not even hosted in SP. 

Any idea?

解决方案

Hi spadminspadmin,

To troubleshoot the issue, you could get the "SharePoint Root Authority" certificate as a physical (.cer) file and import it to the Trusted Root Certification store on all of the SharePoint 2013 servers.

Get the Root Certificate by PowerShell command.


rootCert = (Get-SPCertificateAuthority).RootCertificate

rootCert.Export("Cert") | Set-Content C:\SharePointRootAuthority.cer -Encoding byte

More references:


PartialChain: A certificate chain could not be built to a trusted root authority.


https://blogs.msdn.microsoft.com/josrod/2013/04/19/partialchain-a-certificate-chain-could-not-be-built-to-a-trusted-root-authority/



Workflow Suspended HTTP 500 Security Token Issue.


https://ammarhasayen.com/2016/01/



Best regards,


Sara Fan


                        
这篇关于SharePoint服务器事件查看器中的外部证书错误的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!

                        
                    

                    

                        查看全文
                    

                

				

                            
                        

                

            

        

        

            



        

        

            
相关文章

            
        

        

            



        

    

    

        

            
其他开发语言最新文章

            
        

        

            

                热门教程
            

            
        

        

            

                热门工具
            

            
        

        
    




    



    

        

            登录
            关闭
        

        

            

                扫码关注1秒登录
            

            

                
            

            

                
                
            

            

                发送“验证码”获取
                |
                15天全站免登陆