Home     Products      Support      Corporate     Sign In 
Support Knowledge Base, Article 1200
Product
FileUpEE
Title
Error when doing 3-tier uploads or downloads with HTTPS
Problem
When using trial SSL certificates or full certificates not generated by the major certificate providers (such as Verisign or Thawte) the web server’s Trusted Root Certification Authorities list may not already contain the required certificates for SSL communication between the web server and the file server.
Solution
Overview:When using trial SSL certificates or full certificates not generated by the major certificate providers (Verisign, Thawte) the web server’s Trusted Root Certification Authorities list may not already contain the required certificates for SSL communication between the web server and the file server.

This can result in the following error:

WebServer SendRequest error: WinHttpSendRequest failed The storage control block address is invalid. TargetUrl: https://[servername]/[app path]/fileserver.asp (SoftArtisans.FileUpEe.1)

How to check if SSL certificates are correctly configured: From the web server hit any page on the file server directly using IE and HTTPS. When accessing HTTPS pages IE displays a small padlock at the bottom right hand of the status bar. Double click the padlock and check the Certificate Information. If there is an X in the lower right hand of the certificate and a note that “This certificate cannot be verified up to a trusted certification authority.” Then it is not configured correctly. This issue can also be caused by an expired certificate on the FileServer.

How to properly configure certificates: Check Certificate configuration using the Certificates MMC.
(In Windows XP) Start->Run->Type mmc
File->Add/Remove Snap-in->Click Add Button and select Certificates.
Manage Certificates for Computer Account
Check the Certificates Folder under Trusted Root Certification Authorities. This is where you must place the certificate from the provider if IE tells you “This certificate cannot be verified up to a trusted certification authority.” (See Above)


Temporary Workaround

In FileUpEE version 5.1 and above, there is a registry key "IgnoreUnknownCA" that can be used to tell FilepEE to ignore SSL certificate errors. It is not recommended that this key be used in production since it will make the webserver-to-fileserver part of the file transfer less secure. However, this setting can be useful for troubleshooting purposes or to allow developers to keep working until a certificate issue is fixed. For more information about FileUpEE registry keys, see the documentation: http://docs.softartisans.com/FileUpEE/5.3.1/Content/install/install_registry.htm

Created : 2/4/2013 1:15:52 PM (last modified : 2/4/2013 1:19:32 PM)
Rate this article!
 
Comments