Profilemanager ignores certificate
Hello forum users,
i've installed latest OS X Server (10.9) and configured everything with my signed SSL certificates.
So far everything works perfect except the profile manager. My code sign certificate is signed by StartCom and succesfully imported. I can select the certificate but after a while the checkbox for "Sign configuration profiles" unchecks and i have the following error in my log files:
1:: [149] [2013/10/22 23:55:33.769] Incoming request: readSettings
1:: [149] [2013/10/22 23:55:34.045] Incoming request: readAppDistributionSettings
1:: [149] [2013/10/22 23:55:42.752] Incoming request: readSettings
1:: [149] [2013/10/22 23:55:42.924] Incoming request: readAppDistributionSettings
0:: [149] [2013/10/22 23:57:53.868] Delete node removed from search policy: /LDAPv3/127.0.0.1
1:: [149] [2013/10/22 23:57:53.868] -[DMODSyncRunner haltSync]
-9:: [149] [2013/10/22 23:57:54.134] [0x7fabadf37ad0/<DMDevicemgrd:0x7faba9754600>] -[DMDevicemgrd sendPendingEmailNotifications]
1:: [149] [2013/10/22 23:57:54.206] -[DMODSyncRunner _syncUserODRecords:returningGUIDs:]: Synced 2 users
1:: [149] [2013/10/22 23:57:54.229] +[DMODQueries syncUserGroupWithODRecord:updateTxnBlock:]: Querying OD for new users and groups
1:: [149] [2013/10/22 23:57:54.244] +[DMODQueries syncUserGroupWithODRecord:updateTxnBlock:]: Querying OD for new users and groups
1:: [149] [2013/10/22 23:57:54.262] -[DMODSyncRunner _syncGroupODRecords:returningGUIDs:]: Synced 4 groups
1:: [149] [2013/10/22 23:57:54.265] +[DMODQueries syncUserGroupWithODRecord:updateTxnBlock:]: Querying OD for new users and groups
1:: [149] [2013/10/22 23:57:54.280] -[DMODSyncRunner _syncGroupODRecords:returningGUIDs:]: Synced 1 groups
1:: [149] [2013/10/22 23:57:54.283] +[DMODQueries syncUserGroupWithODRecord:updateTxnBlock:]: Querying OD for new users and groups
1:: [149] [2013/10/22 23:57:54.293] -[DMODSyncRunner _syncGroupODRecords:returningGUIDs:]: Synced 1 groups
1:: [149] [2013/10/22 23:57:54.297] -[DMODSyncRunner _syncGroupODRecords:returningGUIDs:]: Synced 1 groups
0:: [149] [2013/10/22 23:57:54.324] Full sync of bound directory services completed in 0.195 seconds.
0:: [149] [2013/10/22 23:57:55.935] Added node to search policy: /LDAPv3/127.0.0.1
1:: [149] [2013/10/22 23:57:55.935] -[DMODSyncRunner haltSync]
1:: [149] [2013/10/22 23:57:55.936] Ignoring request for OD full sync as it hasn't been long enough since the last full sync.
1:: [149] [2013/10/22 23:58:04.683] Incoming request: readSettings
1:: [149] [2013/10/22 23:58:04.735] Incoming request: readAppDistributionSettings
1:: [149] [2013/10/22 23:58:10.981] Incoming request: writeSettings
0:: [149] [2013/10/22 23:58:10.992] EXCEPTION: Error <-[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1">
0:: [149] [2013/10/22 23:58:10.993] EXCEPTION: Error <-[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1">
USERINFO: {
NSLocalizedDescription = "Carbon error -1";
}
BACKTRACE:
? | 4341430875
? | 4343347588
? | 4340886336
? | 4343524870
? | 4343402391
? | 4340886061
? | 4341371120
? | 4341371028
? | 4340872383
? | 4340768806
? | 4341369584
? | 140735645536341
? | 140735645402513
? | 140735645401659
? | 140735710843565
0:: [149] [2013/10/22 23:58:10.994] Caught unhandled exception -[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1"
1:: [149] [2013/10/22 23:58:25.268] Incoming request: writeSettings
0:: [149] [2013/10/22 23:58:25.279] EXCEPTION: Error <-[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1">
0:: [149] [2013/10/22 23:58:25.280] EXCEPTION: Error <-[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1">
USERINFO: {
NSLocalizedDescription = "Carbon error -1";
}
BACKTRACE:
? | 4341430875
? | 4343347588
? | 4340886336
? | 4343524870
? | 4343402391
? | 4340886061
? | 4341371120
? | 4341371028
? | 4340872383
? | 4340768806
? | 4341369584
? | 140735645536341
? | 140735645402513
? | 140735645401659
? | 140735710843565
0:: [149] [2013/10/22 23:58:25.280] Caught unhandled exception -[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1"
1:: [149] [2013/10/22 23:58:26.895] Incoming request: writeSettings
0:: [149] [2013/10/22 23:58:26.906] EXCEPTION: Error <-[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1">
0:: [149] [2013/10/22 23:58:26.907] EXCEPTION: Error <-[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1">
USERINFO: {
NSLocalizedDescription = "Carbon error -1";
}
BACKTRACE:
? | 4341430875
? | 4343347588
? | 4340886336
? | 4343524870
? | 4343402391
? | 4340886061
? | 4341371120
? | 4341371028
? | 4340872383
? | 4340768806
? | 4341369584
? | 140735645536341
? | 140735645402513
? | 140735645401659
? | 140735710843565
0:: [149] [2013/10/22 23:58:26.907] Caught unhandled exception -[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1"
1:: [149] [2013/10/22 23:58:32.415] Incoming request: writeSettings
0:: [149] [2013/10/22 23:58:32.426] EXCEPTION: Error <-[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1">
0:: [149] [2013/10/22 23:58:32.427] EXCEPTION: Error <-[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1">
USERINFO: {
NSLocalizedDescription = "Carbon error -1";
}
BACKTRACE:
? | 4341430875
? | 4343347588
? | 4340886336
? | 4343524870
? | 4343402391
? | 4340886061
? | 4341371120
? | 4341371028
? | 4340872383
? | 4340768806
? | 4341369584
? | 140735645536341
? | 140735645402513
? | 140735645401659
? | 140735710843565
0:: [149] [2013/10/22 23:58:32.427] Caught unhandled exception -[SCEPHelper getSigningOrganizationNameForCertPath:] (/SourceCache/RemoteDeviceManagement/RemoteDeviceManagement-848.17/Compiled/Fra mework-Base/Support/SCEPHelper.m:226): "'((SCEPHELPER_GetSigningOrganizationName(self.connection, certPath, certPathCnt, &orgName, &orgNameCnt)))' error -1"
Here is the selection box which shows my certificate in the server manager manager:
Validation status from key chain:
I also checked /etc/certificates/ if the certs are missing. The certificates are generated correctly and every file has the content it should have. Here is the certificate overview in /etc/certificates.
I am really wondered about the error message in my log files. Its pretty useless to me, cause i dont know what i could do or check. Maybe someone had a similar problem and could help me 🙂
Greetings from Munich,
Stefan
OS X Server