Resolving SSL/TLS Secure Channel Trust Errors in Dynamics 365 Finance and Operations

-

Introduction

 Have you ever encountered the error:
"The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel"
while deploying from Visual Studio to Finance and Operations.

This error is often linked to an expired or invalid SSL certificate in your environment. 

This also shows up as an expired SSL Certificate warning when you open your Finance and Operations environment from the browser.


Certificates are critical for securing communication channels, and an expired certificate can disrupt services and integrations.
In this blog, we’ll explore the cause of the error and provide steps to resolve it.

References

Configuration

In a new cloud hosted environment, the SSL Certificate stays valid for one year by default.
Post that, it expires at which point it is essential to renew the SSL Certificate.
For Cloud Hosted environments, it is really simple to do via the LCS.

Go to LCS and open the environment which has the expired SSL.
Click on Maintain and then "Rotate Secrets"


In the pop-up menu, select the change type as "Rotate SSL Certificates"


After that the environment will go into servicing and the status will reflect "Rotating Secrets"



This entire process should take less than 15 minutes.
The documentation suggests secrets rotation should show up in the enviroment history however in my attempt it didn't so I'm not sure if that's reliable or not or whether that is only for Tier 2 and above environments though that doesn't make much sense.

Anyways, once this is done we can see that the SSL error has been resolved.


Conclusion

SSL certificates are the backbone of secure communication in Dynamics 365 Finance and Operations environments.
An expired certificate can disrupt critical functionalities, but with proper certificate management, such issues can be avoided.
Regularly monitor your SSL certificate validity to ensure uninterrupted operations.

For more insights into Dynamics 365 troubleshooting, stay tuned for upcoming blogs!

Comments

Post a Comment

Popular posts from this blog

Using Notifications in Business Central via AL

-
Image
Introduction Notifications in Business Central are alerts that appears in the Notification bar based on User actions. Notifications stack up from top to bottom, lasting until the user dismisses them, including those from sub-pages.  Validation errors are prioritized and shown before other notifications. We can use this to alert the user regarding something without taking all the user's notification towards it, in the way messages or errors do. They also have the option to allow Users to make a corrective action by embedding the action button directly into the notification. Let's see how it works. Source Code Pre-requisites Business Central OnPrem/Cloud. References Notification - Business Central Docs Configuration Here, for an example, I've created one simple page which takes two inputs. 1. The message that is to be shown in the notification. 2. The message to be shown after the User clicks on the action embedded in the notification.     And I have two actions which I'l...
Read more

Actionable Error Messages in Business Central

-
Image
Introduction Error handling is an important concept in every technical field.  It helps programs deal with unexpected problems and mistakes smoothly.  It makes sure software works reliably and doesn't crash unexpectedly.  Error handling also helps developers find and fix issues quickly, making the software better for users. Plus, it gives users clear messages when something goes wrong, making their experience smoother. It shows that the team has considered the scenario and has measures in place for it indicating a well designed solution. Microsoft has an amazing document which lists the things to keep in mind for writing resilient code. In Business Central, we have try functions to handle errors and error function to show those errors to the Users.  In this blog, we'll learn how we can enhance the error messages so that the Users can resolve the errors themselves or at the very least we can point them towards where the error is. Pre-requisites Business Central OnPrem...
Read more

Configure Gmail SMTP service in Business Central without "Allow Less Secure" setting

-
Image
 Introduction Business Central has great email features like sending email, editing it with Rich Text, adding attachments, etc, but to send emails, you'll need to connect it with services like Outlook or Gmail. There is no outlook side configuration that is to be done if you are using Microsoft Outlook however if you are using Google's Gmail then there's a litte change that has happened on the configuration end. Starting May, 2022, Google has removed the "Allow Less Secure Apps" settings from the Google Accounts, which was essential is using Gmail to send emails from Business Central. However, to replace that we have "App Passwords" which we can use instead. Also, just something to keep in mind, Google is going to remove this from the "Google Workspace" accounts as well by Sept, 2024 so it would be wise for you to migrate your configurations to use app passwords. Reference 1.  How to Setup Email in Business Central 2.  Google Support - Less sec...
Read more