Google Chrome displays "Invalid Server Certificate" when attempting to browse to the UDS logon URL

Article ID: KB31090

Type: Support Content

Last Modified: 04-03-2012

 

Product(s) Affected:

  • Universal Device Service
CollapseEnvironment
  • Google® Chrome
  • Universal Device Service
CollapseOverview
When attempting to access the logon URL for the Universal Device Service administration site Google® Chrome returns the error Invalid Server Certificate
CollapseCause

This error message might occur for one of the following reasons:

  1. Windows® 2003 doesn't know how to display sites using SHA2 certificates
  2. Windows XP doesn't know how to display sites using SHA2 certificates
CollapseResolution

Cause 1

The UDS administration page uses a self-signed certificate that was generated using a SHA2 signing algorithm. By Default Windows 2003 does not know how to process SHA2 certificates.

Resolution 1

Microsoft has released a hotfix that adds SHA2 support to Windows 2003 servers. This hotfix is not available through Windows Update and must be requested from Microsoft through KB968730. Once the hotfix has been installed and the system rebooted the site should load correctly.

Cause 2

The UDS administration page uses a self-signed certificate that was generated using a SHA2 signing algorithm. Some versions of Windows XP do not support SHA2 certificates.

Resolution 2

Microsoft added SHA2 support into Windows XP in Service Pack 3. Updating Windows XP to Service Pack 3 will allow the page to be loaded correctly.

CollapseWorkaround

If you do not want to update all hosts in your environment running older Operating Systems you can remove the certificate that was created during installation and import a new certificate using the older SHA1 signing algorithm. Please follow KB31084 to accomplish this.

Disclaimer

By downloading, accessing or otherwise using the Knowledge Base documents you agree:

   (a) that the terms of use for the documents found at www.blackberry.com/legal/knowledgebase apply to your use or reference to these documents; and

   (b) not to copy, distribute, disclose or reproduce, in full or in part any of the documents without the express written consent of RIM.


Visit the BlackBerry Technical Solution Center at www.blackberry.com/btsc.