Ok, So the part of Importing the generated certificate to the Epicor App Server in windows did work?
We did not have to do anything on the device, the EKW app just accepted it as is with everything updated to the latest version. As for chrome it should give you some kind of error, when we first started having the issues chrome was giving the error that the Key Usages was invalid. Do you have an error code so we can help out? If the error is not visible then you will probably need to do a remote debug session to review.
Desktop: Using Chrome with the new self-signed cert created with PowerShell AND imported into Trusted folder in the Certificate Snap-In works without any warnings or errors.
Android (Intermec): After deleting installed certs, EKW now works and no āInvalid Usageā or āIncompatibleā errors. However, browsing to the site in Chrome works but with the non-trusted icon. Weāll try to load the cert again next week as he got called away.
I ran into a certificate issue the other day. And a long time in past (back in 2021) it turns out that the acme.sh shell script which is typically used in linux environments on a cron job use to renew certificates for letās encrypt. If you werenāt paying attention then all of a sudden your website would go down, due to the fact that you certificate had expired. Donāt ask how I know.
Hereās the link to the Letās encrypt issue
So a couple of suggestions.
*It is possible to run your own certificate authority server internally to manage these types of scenarios.
For Android and handheld using a tool like SOTI, MS Intune or some other MDM that will allow you to manage certificates on all your handhelds.
This acme.sh issue may not even be relevant, but I thought I would mention it. I am by no means a certificate expert, but the biggest problem I see is that they get setup, forgotten and then they expire and people end up scrambling to fix the problems and how they got it working in the first place. Please ensure you document the process and put it in a safe place for when the inevitable happens.
