New Server Kinetic Install

Kinetic ERP
1

Doing a fresh install.

I am able to install and run the client with no issues.

The Kinetic part is not working as expected.

Trying to get to the api help page and am getting an error.
https://kinetic.embedtek.local/Kinetic2021/api/help/v2/

ERR_SSL_KEY_USAGE_INCOMPATIBLE

Can anyone help me out? I am searching log files and am not seeing anything.

2

What binding are you using? Did you install a certificate with the keys?

3

image
image785×737 78 KB

I did a self cert. Not sure what you mean by keys.

image

Thanks,

Ken

4

i am going to try a different endpoint binding

5

You need to allow the keys of that certificate to be accessed by the account running Your App Pool

Start → Run → MMC
File → Add / Remove Snapin
Certificates → Computer Account → Local Computer
Find certificate click Manage Private Keys

image
image1195×427 51 KB

Give Full Control to your Epicor Account

image
image531×555 19.9 KB

2 Likes
6

But yes if you switch to UsernameSSLChannel you may be able to bypass this. (may)

1 Like
7

Same error.

I allowed full control the keys of the cert to the EpicorAdmin account.

image
image806×733 84.8 KB

image
image1493×663 25.9 KB

I even rebooted the server to see if that did the trick.

8

back to where I started so I know the moving parts from here on out.

image
image1367×731 143 KB

client works.

image
image1467×842 125 KB

Just not Kinetic form.

9

Swithc to UsernameSSLChannel does that make a difference?

10

When using browser, binding does not matter.

11

Is there more error info in Brower security tab?

12

Where would that be? I am using EDGE on the server.

Thanks,

13

not much more information.

image
image1397×747 149 KB

14

Is it new server used? What OS is there? May be TLS is outdated on server or client?

Check if there are any errors in Event Viewer\System or Security on server side.

If no, I could suggest to switch on SChannel detailed logging and look in the event viewer what errors are shown, as described here:

But it requires reboot…

15

No errors or messages.

This is a new server, though it may be windows server 2022. I’ll see if I can get 2019 installed and retry…

16

Did you ever find a solution for this? I am thinking it is Windows Server 2022 that now uses TLS1.3. We upgraded to Windows 2022 and got the same error. Classic client runs fine. Rest Services run fine.

17
18

Looks like Windows Server 2022 does not like cert generated y EAC. You have to create your own.

2 Likes
19

It does not look the same issue to me. Here only browser client fails to work. Your link says that none of the clients work. Looks like something different.