PUSH certificate and trust list failed at selecting endpoint with local status BadNotSupported

[kherron]

I'm unable to push a certificate into my server, getting this error: PUSH certificate and trust list failed at selecting endpoint with local status BadNotSupported

In Wireshark the GDS gives up after getting the GetEndpoints response each attempt.

Where can I get more information about what's wrong?

[kherron]

Solved. It looks like the GDS does not support endpoints with a UserTokenPolicy that uses Basic256 instead of Basic256Sha256.

Once I changed the security policy of the token to Basic256Sha256 it started working.

[Support Team]

Hi,

yes correct the UaGDS (by default and by intention) is not using the old "deprecated" security policies. Therefore the UaGateway checks the GetEndpoints response and checks for "appropriate" security policy. We have discussed backwards compatibility over secure by default, and (specially for a security component like the UaGDS) have decided to go for the "good" policies only.

Most UA Servers support the Basic256Sha256 (and many more) and the UaGDS requires that being the minimum (amongst others).

Thank you for reporting and clarifying.