Hi to all,
I had my NAC solution working fine but suddenly some users were getting this message when they were trying to log on:
Clean Access Server could not establish a secure connection to Clean Access Manager at mydomain.com.
This could be due to one or more of the following reasons: 1) Clean Access Manager certificate has expired 2) Clean Access Manager certificate cannot be trusted or 3) Clean Access Manager cannot be reached.
Please report this to your network administrator.
I tried generating the ssl certificates again but it didn't work, The certificates were still valid, the time settings are the same in the CAM and CAS, i can managed the CAS from the CAM interface so is not a "not reach" problem.
I also found this on the Config Guide from both the CAM and CAS: If you check nslookup and date from the CAS, and both the DNS and TIME settings on the CAS are correct, this can indicate that the caCerts file on the CAS is corrupted. In this case, Cisco recommends backing up the existing caCerts file from /usr/java/j2sdk1.4/lib/security/caCerts, overriding it with the file from /perfigo/common/conf/caCerts, then performing âservice perfigo restartâ on the CAS.
I did it but the problem remains, do you know what else can I try???
Thanks in advance for your help.