Otherwise, the third-party certificate may not be used by the Proxy after the restart, and the Qlik Sense server reverts back to the default self-signed certificate.
Browsers will show an untrusted certificate.
The Qlik Sense Proxy security log may show any or all of the following lines:
Certificate 'CN=<servername>' (2F66E692BBC9DCB5EF43853248A667EAD7CB27B2) is invalid because it was not signed correctly by 'CN=<servername>-CA'
Unkown error when accessing the private key for certificate
No private key found for certificate
Couldn't find a valid ssl certificate with thumbprint
Reverting to default Qlik Sense SSLCertificate
The Qlik Sense Proxy system log may register the following:
INFO <servername> System.Proxy.Proxy.Core.QPSMain 8 40e67960-d393-4881-a7c8-efafe089ef0f <serviceAccount> Settings has been updated but will not take effect until bootstrap mode has been run on the repository