I upgraded from 10.0.7 to 10.0.8 earlier today, and ever since the BES Client on the BES Root server itself isn’t able to connect to the local relay that runs on that server. It tries to connect with SSL but fails and falls back to HTTP.
The log shows:
RegisterOnce: Attempting secure registration with 'https://127.0.0.1:52311/cgi-bin/bfenterprise/clientregister.exe?RequestType=RegisterMe60&ClientVersion=10.0.8.37&...'
RegisterOnce: Relay does not support secure registration.
RegisterOnce: Registration backing off from SSL, attempting in clear text
Unrestricted mode
Configuring listener without wake-on-lan
Registered with url 'http://127.0.0.1:52311/cgi-bin/bfenterprise/clientregister.exe?RequestType=RegisterMe60&ClientVersion=10.0.8.37&Body=...'
Registration Server version 10.0.8.37 , Relay version 10.0.8.37
Relay does not require authentication.
Client has an AuthenticationCertificate
I read something about the minimum relay level and requiring an SSL connection so I changed it to 9.5.6, afterwards the log shows this:
The BES Client log shows:
RegisterOnce: Relay does not support secure registration.
RegisterOnce: Current deployment 'x-bes-minimum-supported-relay-level' masthead setting does not allow clear text registration.
Now it looks like I’m stuck with the minimum being 9.5.6, I tried setting it to 0.0.0 but it didn’t seem to make a difference. And the client doesn’t connect at it, it’s stuck in a loop trying to connect, failing, trying again and again.
Prior to upgrading, it would connect without a problem:
Registration Server version 10.0.7.52 , Relay version 10.0.7.52
Relay does not require authentication.
Client has an AuthenticationCertificate
REST API scripts that run on the BES Root server aren’t able to connect, either.
The REST API scripts (written in VBScript) reports:
A certificate is required to complete client authentication
I had a look at the top-level relays, they are able to connect to the BES Root with SSL. It’s just the BES Root server connecting to itself that’s having this problem.
{Edit}
I should add that I also have the issue with Web Reports prompting to select a certificate, I’m sure all of these issues are related somehow.
{/Edit}
Any ideas what could be going on here? What to check?