06-13-2023 07:19 AM
Hello, I'm a help desktop tech. I have a user who is asking why he is receiving this error message. I'm not sure myself, can someone explain it to me. Thank you
06-13-2023 07:30 AM
The user has two matching certificates installed on the device for some reason. Without knowing anything about your environment the only thing we can tell you is that there's now two certificates matching the criteria GlobalProtect is looking for, and that this appears to be non-standard within your environment. Why that user has two nobody here could help you with.
You can prevent this by using custom certificates for GlobalProtect with a custom Extended Key Usage OID value specified in the certificate to have GlobalProtect automatically select the proper certificate when multiple certificates are present. Many environments will never configure this as having multiple matching certificates on a single device would be an extreme edge-case scenario and issuing out a dedicated certificate has additional overhead.
06-13-2023 10:05 AM
As per BPry but are the certificate cn/subjalt the same.. perhaps you are using this in the GP portal app and GP is also detecting a cert in the computer personal store..
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
