The custom domain configuration in the integrated developer portal will not work if the TLS certificate chain is expired: Publish > Portals > Developer Portal > Settings > Domains.
The following error message is displayed:
The error message is displayed in the Edge UI as shown below:
|Cause||Description>||Troubleshooting instructions applicable for|
|TLS certificate chain has expired||If the TLS certificate chain provided has expired, the custom domain configuration will fail.||Edge Public Cloud users|
Cause: TLS certificate chain has expired
Do the following steps to diagnose the issue:
- Verify the TLS certificate chain expiry date and time.
- If the specific TLS certificate chain is expired, then it will cause the virtual host creation process to fail in the integrated developer portal. As a result, the above error message is displayed to the user on the custom domain configuration page of the Edge UI.
If you have ascertained that the TLS Certificate chain has expired, then do the following steps to resolve this issue:
- Obtain a new TLS certificate chain from the relevant certificate authority.
- Convert the TLS certificate chain to PEM format.
- Validate that the TLS certificate chain is valid.
- Remove the existing TLS Certificate chain from the specific keystore.
- Upload the file containing the TLS certificate chain in PEM format and the file containing the private key to the keystore using a key alias in the Edge UI or management API.
- Configure keystore, alias, domain name in the integrated developer portal custom domain configuration page.
- Click Save.
If the problem still persists, go to Must gather diagnostic information.
Must gather diagnostic information
If the problem persists after following the above instructions, gather the following diagnostic information and share it with Apigee Support:
- Apigee Edge Cloud organization name
- Apigee Edge Cloud integrated developer portal name
- Name of the keystore created in the portal environment
- Alias name
- Custom domain name
- A screenshot of the custom domain configuration page capturing the error message