I am getting the dreaded “Failed to Validate Certificate” error.
Ignition version: 7.6.6
Ignition Gateway Java version: 1.7.0_25
Ignition Client Java version: 1.8.0_31
I am not able to disable “Perform revocation checks” on our customer’s machines because this looks like a huge security risk to their IT department. I am also unable to upgrade to a newer version of Ignition (too much risk on my end!). Now I have a few questions:
[li] There are seemingly two versions of Java at play here: the client and gateway versions. What exactly is each responsible for? Does it matter that they aren’t matching?
[li] On my local development machine, the Gateway is running Java 1.8.0_31 and I never get this error. It seems that when the Gateway Java version and the client Java version are in agreement, there are no problems. So what exactly is happening in this case?
[li] I have another site for our customer with the EXACT same installation details (7.6.6, 1.7.0_25) but I do not get the “Failed to Validate Certificate” error when I try to run the client for that site on my machine. What would be causing this difference?
[li] The only other solution I have found for this issue is to add each gateway to each client machine’s site exception list. Again, this is another unacceptable solution as there are dozens of client machines (between the site, corporate, our support machines and their support machines) that will launch these HMIs and this quickly becomes an unmanageable task.[/li][/ol]