Switching from Net.Tcp to Https Endpoint Binding PDT not working

Aaron_Moreng · September 17, 2021, 6:32pm

And how about the sysconfig on the client?

iggy · September 17, 2021, 6:38pm

looks the same as the application server url

Aaron_Moreng · September 17, 2021, 6:39pm

Hmm, in both of those nodes I specified? Sometimes even a letter difference (Http(s))can break the whole thing…

chaddb · September 17, 2021, 6:44pm

Also going to want to make sure you have a valid or trusted (internal CA, etc.) cert if using HTTPS. Will need to set that up in IIS.

iggy · September 17, 2021, 6:53pm

[AppServerURl],
<HomePageUrl are a little different, but it is to be expected, the address are the same but it veers off to /apps/erp/home

iggy · September 17, 2021, 6:53pm

I believe I do, let me check again

iggy · September 17, 2021, 7:00pm

when I hit retry on attempting to reconnect to the server after logging in I get this, I guess it is the cert right?

iggy · September 17, 2021, 7:06pm

so, do I bind the certificate to the site, because there is one in there?

iggy · September 17, 2021, 7:35pm

I deleted the reply, because I deleted the binding and reset iis, and am back at attempting to reconnect to the server,… i am so lost.

Aaron_Moreng · September 17, 2021, 7:36pm

Oh boy, sorry man. I know this stuff can be super frustrating. Happy to jump on a teams call with you if you want, just DM me

iggy · September 20, 2021, 5:37pm

Thanks Aaron for logging in and walking me through a few things. Sadly as we saw, no matter what, we cannot get Https EndPoint Binding\HttpsBinaryUsernameChannel or HttpsBinaryWindowsChannel to work, all sorts of odd error messages.

Reverting back to Net Tcp Endpoint Binding\UsernameWindowsChannel works… but being that it is being deprecated, I don’t feel like we should stay on it.

Olga · September 20, 2021, 5:47pm

Last error is about certificate not trusted.
You have to use either certificate, issued by some known certificate authority or learn how to establsih trust for the self-signed certificate.
It is essential when switching to https.

chaddb · September 20, 2021, 5:52pm

Yes. You bind it to the site in IIS. Make sure the cert that’s selected is either a valid CA cert or is trusted if using a self-signed or internal CA.

iggy · September 20, 2021, 5:52pm

Thank you Olga, so I have the certificate in the Trusted Root Certification Authority, are you saying there is more I should do?

iggy · September 20, 2021, 5:54pm

We do have that portion

chaddb · September 20, 2021, 5:54pm

It would need to be on every machine that’s going to access the app. You can push it out with a GPO. We use a signed CA wildcard so we don’t have to add anything since it’s already in the Windows trusted root store.

iggy · September 20, 2021, 5:55pm

ahhhh, hmmm, OK, let me try that

Olga · September 20, 2021, 5:56pm

here I wrote how they are checked

chaddb · September 20, 2021, 5:57pm

Is it a self signed or CA cert?

iggy · September 20, 2021, 5:59pm

Self signed

Topic		Replies	Views
Epicor Administration Console Epicor ERP 10 e10 , epicor	15	10247	August 1, 2023
SSL/TLS Certificate Setup Issue Kinetic ERP	25	6697	October 6, 2022
PDT using HTTPS Binding Epicor ERP 10 pdt	4	831	June 5, 2019
10.2 Upgrade woes Epicor ERP 10	12	2756	October 11, 2018
App server inaccessible Epicor ERP 10 e10	26	8222	August 8, 2019

Switching from Net.Tcp to Https Endpoint Binding PDT not working

Related Topics