Welcome to Headwind MDM Q&A, where you can ask questions and receive answers from other members of the community.

Please do not post bug reports, missing feature requests, or demo inquiries. If you have such an inquiry, submit a contact form.

0 votes

I am using Headwind Remote Premium in our corporate LAN with custom certificates.

I was able to deploy Headwind Remote web panel and it shows "Ready to Control", but mobile devices cannot connect to it:

java.security.cert.CertPathValidatorException: Trust anchor for certification path not found

How to fix the issue?

retagged by

1 Answer

0 votes

This issue happens if you specify a single HTTPS certificate in nginx settings (custom_ssl_cert parameter in config.yaml). You need to concatenate the whole chain of certificates into one file:

cat Certificate-website.pem CACertificate-INTERMEDIATE.pem CACertificate-ROOT.pem > CAchain.pem

and specify the absolute path to this file in config.yaml:

custom_ssl_cert: /path/to/CAchain.pem

More details about setting up a custom certificate in Headwind Remote Premium can be found in README.md.

Note: a similar problem may arise in Headwind MDM: https://qa.h-mdm.com/7394/

by (35.3k points)