App Control: Trusted Certificates List is Blank
search cancel

App Control: Trusted Certificates List is Blank


Article ID: 286609


Updated On:


Carbon Black App Control (formerly Cb Protection)


  • Trusted Certificates List is empty but visible under Administration (Gear Icon) > System Configuration > Security
  • Agents show the health check error:
Server certificate list has been stored but has been determined to be invalid
  • TrustedCertificateList.pem is empty


  • App Control Server: 8.7+
  • App Control Agents: One device or more on 8.7+


The certificate used for agent communication failed to be added to the trusted certificates list during the server upgrade.


  1. Navigate to Administration > System Configuration > Security
  2. Export the Certificate (Which is listed in the System Configuration > Security page) using the directions in this article
  3. In the Trusted Certificate menu select Import and select the CER file you exported as part of step 2
  4. In the confirmation menu, click the checkbox next to the certificate and select Import
  5. If on 8.7.0 you may need to disable, and enable the radio button next to the imported certificate to generate a new TrustedCertificateList.pem file.

Additional Information

If the Trusted Certificate List menu is not visible, follow the steps in this article