Troubleshooting

Error

Diagnosis

The Underlying Connection was closed. Could not establish trust relationship for the SSL/TLS secure channel. (Validating

'https://venafittpserver.com/vedauth/')

1. Check if Certificate expired.

2. Check if there is proxy installed between CSP Machine and Venafi TPP Server.

You are trying to list available keys from signing on CSP Machine and do not get keys in return. User check of any error and below error displays on Venafi Server Log.

tppadmin is an administrator and do not have access to Read Private Keys

Assign a different user than administrator to access the private

You are trying to add a Codesign certificate from CodeSign Protect by creating Project and you face below error

Failed to add Private Key to KeyStore. Error: Failed to generate key pair due to exception: Call to C_GenerateKeyPair failed [UserNotLoggedIn]

1. Check if the HSM slot is initialized.

2. Check if the user is logged in.

3. Restart the Venafi Configuration Console.

4. Restart the IIS Service.

You are trying to add a Codesign certificate from CodeSign Protect by creating Project and you face below error

Failed to add Private Key to KeyStore. Error: The selected engine 'UTIMACO' does not allow key storage (or AKP is not licensed.)

While creating the HSM connector, user need to check the "Allow Key Storage (Priavte Keys are non-exportable)" checkbox.