Windows CAPI2 logging can be utilized to troubleshoot and diagnose potential certificate communication issues within Qlik Sense.
Resolution:
- Enable CAPI2 logging on the server you want to troubleshoot for certificate issues
- Open the Microsoft Windows Event Viewer (Control Panel > Administrative Tools > Event Viewer)
- Navigate to: Applications and Services Logs > Microsoft > Windows > CAPI2 > Operational.
- Right click on the Operational view and click the Enable Log menu item from the context menu.
- Restart the Qlik Sense proxy service on the server
- Attempt to open the QMC and/or Hub
- Filter the CAPI2 logging on Errors and Warnings
- Click on error Verify Chain Policy, then click Details tab
- Verify the certificate referenced in the error is the one issued from the Central Node
- Review full error listed with in the details view and look for error The signature of the certificate cannot be verified.