Agent upgrades or other files from the Resource Download Location (RDL) fail with an error similar to:
Error: Failed to download upgrade package: https://ServerAddress/hostpkg/pkg.php?pkg=/ParityHostAgent.msi. WinHttpSendRequest Error[12175:]
Microsoft defines the WinHttpSendRequest Error[12175] as:
ERROR_WINHTTP_SECURE_FAILURE: 12175 One or more errors were found in the Secure Sockets Layer (SSL) certificate sent by the server.
Typically this is because the SSL Certificate bound to the Resource Download Location is invalid (expired, incorrect Common Name, Untrusted Root, etc).
cd C:\Windows\SysWOW64\ netsh winhttp show proxy
netsh winhttp set proxy proxy-server="" bypass-list=;
In some installations the Resource Download Location can be temporarily modified to use http:// instead of the https:// although this configuration is not recommended for security purposes.