Hi Everyone,
I’m new to the forum. I’ve been using BF Remote Control via Controller for quite some time. I host a relay server at my location. Recently the relay server has changed to a different domain. Since then, I cannot connect to any computer. I get a TRC16036 handshake error. The TRCtrace log gives error “Error receiving response to crypto challenge”. Also “TLS connection failed” error.
So far I have reinstalled the target on computers, reinstalled the Controller, and tested with a lot of different target settings.
Any help would be greatly appreciated.
Hi DeSandro,
What do you mean with “relay server” ? Do you mean a Remote Control Server ? There is no such “relay” component in Remote Control.
Anyway if the domain is changed on the Server you need to modify the url and secure.url properties on the Server (Edit Properties file → trc.properties). Then you need to configure the DNS so that the old domain server will point to the new domain server IP. In this way all the Targets will connects to the new Server and the local ServerURL property will be updated with the new value (NOTE: By default the Target reports every 1 day so check the rc.heartbeat_timeout property value on the server). Alternatively you can use the BESConsole and push the change to the Target using the Wizard in the Remote Control site.
These changes will ensure you that the hostname / FQDN in the Certificate will match the one in the URL and the error should disappear.
Hi f.pezzotti,
I will try to clarify. I work for a company that has 60 locations. The BigFix root server resides at our corporate location, while all other locations host a BigFix Relay server (installed on a Windows server). At my location, I use Remote Control Controller that is installed on my desktop computer. I also have the Console installed on my desktop computer that has right-click remote control functionality. All endpoints at my location have Remote Control Target with Remote Control Settings. Everything has been working (using the Controller app) without issues.
My BigFix Relay server has migrated from old.domain to new.domain. After my Relay server changed to new.domain, Remote Control has stopped working. Now I get the handshake error when trying to connect to any computer at my location.
I recently installed Remote Control Server on my Relay server with the proper settings, pointing to the new server domain, with hopes I could use it while I tried to resolve the Controller app handshake error, but it cannot find any of my computers. This may be a completely separate issue.
I hope this info helps. Let me know if any other info would be helpful.
I think we’re still trying to understand your setup. You may be better served opening a Support ticket so our team can look at the system with you.
On its own, a BigFix Relay has nothing to do with the Remote Control architecture - it has no role in Remote Control. However if you happen to have installed the Remote Control Broker on the same host as the Relay, or something along those lines, then it is pertinent.
When installing a new/additional Remote Control Server, this also is largely independent of BigFix itself - we just have some tasks/fixlets/analysis that are useful in configuring the server and clients. If you’ve just installed a new server, it will not see any clients because the end-computers must be configured to register to the new Remote Control server (and stop communicating with the old server).
The right-click option for remote control is, I think, some custom setting in your environment, not something we deliver with BigFix itself. I’d check the Registry settings described at https://support.bigfix.com/labs/customright.html to see whether your specific right-click options are possibly referencing the old domain name? I think that’s a plausible explanation.
Hi Jason,
I have indeed just opened a support ticket. I sent them the trc_trace log that points to the “crypto challenge response” error.
I do not have the Broker installed, so this is very strange. I realize that the Relay server changing domains will affect group policy and many other settings, but if Remote Control isn’t passing information through the Relay, then it shouldn’t matter anyway.
As for Remote Control Server, I pushed target settings that point to the correct server URL, but will need to check to see if my endpoint machines are registered to it. Do you know if the endpoints with RC Target installed have any registry entries that may need to be removed or updated?
I appreciate everyone responding to this. I’ll continue testing and working with support and will update on this post.
1 Like
As for Remote Control Server, I pushed target settings that point to the correct server URL, but will need to check to see if my endpoint machines are registered to it. Do you know if the endpoints with RC Target installed have any registry entries that may need to be removed or updated?
You can take a look at the ServerURL property on the Target. Every OS have its own way to set Target settings. Take a look here: