Layer7 API Management

 View Only
  • 1.  Portal enrollment shows - Server certificate key hash does not match pin value

    Posted Aug 20, 2019 11:12 AM
    Dear All,

    Seeking your assistance on below issue . Both Portal and Gateway hosted onprem. There is no firewall in between, both servers are hosted in same subnet and DNS resolution works just fine.

    Portal enrollment process on policy manager runs for a while after adding enrollment URL (generated on portal) at the end it prompts with below error and exit. 
    --------------------------

    On Policy Manger enrollment shows:
    Unable to enroll: java.security.cert.CertificateException: Server certificate key hash does not match pin value

    Gateway logs shows:
    2019-08-19T04:51:52.668-0500 INFO 726 com.l7tech.server.admin.AsyncAdminMethodsImpl: Asynchronous job JobId<java.lang.Boolean>:920e5d6e85a86ac25fef762906a24fc5ae5983b86f556a58b27d31a616ea671e threw an exception: java.security.cert.CertificateException: Server certificate key hash does not match pin value
    ----------------------------


  • 2.  RE: Portal enrollment shows - Server certificate key hash does not match pin value

    Posted Oct 07, 2019 08:09 AM
    Hi Sanjay,

    I have faced the same issue. Did you get the resolution for same ?

    Thanks
    Prat


  • 3.  RE: Portal enrollment shows - Server certificate key hash does not match pin value
    Best Answer

    Posted Oct 07, 2019 09:45 AM
    Hi Sanjay,

    Please ignore as issue has been resolved.

    Thanks
    Pratyush


  • 4.  RE: Portal enrollment shows - Server certificate key hash does not match pin value

    Posted Nov 06, 2019 03:09 AM
    Hi Pratyush,
    how did you resolve it?

    It would be helpful if you would mention it,

    thank you

    Maurizio

    ------------------------------
    Maurizio Garzelli
    APIIDA
    APIIDA Principal Consultant
    https://apiida.com
    ------------------------------



  • 5.  RE: Portal enrollment shows - Server certificate key hash does not match pin value

    Posted May 26, 2020 11:34 AM
    Well, since then, I discovered a solution article that I will post here:

    https://knowledge.broadcom.com/external/article/125605/server-certificate-key-hash-does-not-mat.html

    We had the same issue and this helped. It sounds weird but it did.

    Thank you

    ------------------------------
    Maurizio Garzelli
    APIIDA
    APIIDA Principal Consultant
    https://apiida.com
    ------------------------------