Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Certificate - expire within next 60 days but Cert valid until 2114

SOLVED
Go to solution
NetworkBod
Contributor
‎05-25-2022 03:42:AM
‎05-25-2022 03:42:AM

Certificate - expire within next 60 days but Cert valid until 2114

Hi, I've noticed a 'Trusted Client CA' Certificate has a warning in the log stating "Certificate 'XXXXX' is about to expire within next 60 days" but if I check the certificate the end date is years away 2114. If I run the certificate validity checker it says it will expire end of next month. This cert is for authentication so important to understand why the date is not as per the end date on the cert?

 

It was around this time last year when I imported this CA cert so could it be the trusted client CA certs have a max 1 year validity irrespective of what is on the actual cert. :/ 

 

I always find dealing with Certificates is a 'Dark Art' so if anyone has seen this before be useful to know, Cheers.

1 ACCEPTED SOLUTION

Accepted Solutions
NetworkBod
Contributor
‎06-17-2022 05:43:AM
‎06-17-2022 05:43:AM

Re: Certificate - expire within next 60 days but Cert valid until 2114

FYI - Pulse have released KB45235 to address this certificate validity problem, the KB states the 'Trusted Server CA Shows incorrect validity for EE Certification Centre Root CA' but it can effect other certificates. Its cosmetic only and will be resolved in a later release. thanks.https://kb.pulsesecure.net/articles/Pulse_Secure_Article/KB45235/?kA13Z000000X0I4 

View solution in original post

4 REPLIES 4
zanyterp
Moderator
Moderator
‎05-25-2022 05:56:AM
‎05-25-2022 05:56:AM

Re: Certificate - expire within next 60 days but Cert valid until 2114

could it be? yes…is that expected? no.
that is not something we have seen or expect
please open a case with our support team for further investigation
NetworkBod
Contributor
‎05-27-2022 02:18:PM
‎05-27-2022 02:18:PM

Re: Certificate - expire within next 60 days but Cert valid until 2114

@zanyterpThanks zanyterp, I've raised a case and support are investigating. Definitely an odd one, the cert checks out all ok using OpenSSL which validates the end date in 2119 all ok. The cert also looks correct within Pulse, it just seems to be the "Certificate Validity Check" within Pulse which is calculating the incorrect end date. Could it be the validity checker is effected by the 2038 Unix time formatting bug.  Hopefully support will get to the bottom of it. Cheers

NetworkBod
Contributor
‎06-17-2022 05:43:AM
‎06-17-2022 05:43:AM

Re: Certificate - expire within next 60 days but Cert valid until 2114

FYI - Pulse have released KB45235 to address this certificate validity problem, the KB states the 'Trusted Server CA Shows incorrect validity for EE Certification Centre Root CA' but it can effect other certificates. Its cosmetic only and will be resolved in a later release. thanks.https://kb.pulsesecure.net/articles/Pulse_Secure_Article/KB45235/?kA13Z000000X0I4 

zanyterp
Moderator
Moderator
‎06-17-2022 07:41:AM
‎06-17-2022 07:41:AM

Re: Certificate - expire within next 60 days but Cert valid until 2114

thank you for sharing the update, @NetworkBod
0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.