Certificate Issues

Description

The issue indicates that SSL-certificate of the backup storage provider or another backup-related network endpoint is being rejected on client's side. Probable causes are as follows:

operating system
security software activity
user account settings.

Once this issue is occured, a set of actions should be performed in order to validate the certificate.

General TLS/SSL description can be found in an appropriate Wikipedia article.

Educational videos on SSL/TLS:

Typical Issue Resolution

Solution 1

Run the Backup application.
In the application menu, open the storage account that is used in the failing backup plan.
Select Advanced Settings.
Then try to list backup prefixes in that storage by opening a drop-down list in order to initiate communication with the cloud storage provider:

5. A prompt to accept the rejected SSL-certificate appears. 6. Click Allow.

Solution 2

Usually, steps of Solution 1 are enough, but in case the issue persists, do as follows:

Navigate to the Settings folder of the Backup application by the path "C:\ProgramData\COMPANYNAME\PRODUCTNAME”, where your company and product names are taken from the Managed Backup portal -> Settings -> General -> Company / Product Name.
In this folder, delete or rename the following files:

CertificateExceptions.list
serviceConfig.xml

Follow the Solution 1 steps again.

Solution 3

Sometimes certificate rejection can be caused by specific firewall/security software settings which could require troubleshooting with accordance to the instruction from the security software provider website. As an example, refer to FortiGate firewall settings.

Solution 4

The issue could also be caused by an expiration of a SSL-certificate on client side which could be resolved by certificate renewal or software update (typically, gateway or firewall) that uses it. It could also be caused by certificate expiration on cloud storage provider side in specific cases (usually for small scale S3-compatible or OpenStack-compatible storage providers).