Platform Status reports down and the remote station’s Health reports Fail with the cause of certificate_unknown

The remote platform/station presented only a self-signed certificate to the client station, which cannot perform server authentication or another certificate error occurred, which was caused by the attempt to securely connect.

As a temporary measure, expand Services > PlatformServices, double-click CertManagerService, click the Allowed Hosts tab, select the unapproved certificate (its icon is a white X on a red shield), click Approve and click Yes. The red shield changes to a white check mark on a green shield.

The remote station’s certificate should appear twice in the Supervisor station’s Allowed Hosts tab, once to connect to the remote platform and the second instance to connect to the remote station.

Approving a certificate using Allowed Hosts provides only minimum communication security between client and server. The certificates in Allowed Hosts are self-signed by the remote controller station. They encrypt communicated data. But, approving them bypasses the client station’s normal client certificate authentication. Rather than rely on approved self-signed certificates, each platform/station’s certificate should be signed by a certificate authority recognized by the client station