After installing a new Windows Native Monitoring Point it fails to connect and register to the SaaS backend server. The check-appneta-connection.exe utility shows the following error:

curl_easy_perform() failed: ret=60 response=0 connect=0 summary= SSL peer certificate or SSH remote key was not OK(60): SSL certificate problem: unable to get local issuer certificate

Windows Server

The Windows Operating System does not have the most up to date common Certificate Authority certificates loaded. In this case AppNeta's certificate is signed by DigiCert.

     DigiCert Global Root G3 (Root Cert)
     DigiCert Global G3 TLS ECC SHA384 2020 CA1 (Intermediate Certificate)

- Microsoft's Certificate Manager (for local system) can be used to check and see if the certificates are present.

   Launch via SnapInConsole

certlm.msc

Found that the DigitCert certificates (DigiCert Global Root G3, DigiCert Global G3 TLS ECC SHA384 2020 CA1) were not present.

- The Certificates can be downloaded from the DigiCert Certificate Authority 

   https://www.digicert.com/kb/digicert-root-certificates.htm

DigiCert Global Root G3 (pem format)
DigiCert Global G3 TLS ECC SHA384 2020 CA1 (pem format)

- Imported 'DigiCert Global Root G3' to 

       Location to Import: Trusted Certification Authority ~~> Certificates

        Right Click ~~> Import ~~> Follow Steps On Screen

- Imported 'DigiCert Global G3 TLS ECC SHA384 2020 CA1'

       Location to Import: Intermediate Certification Authority ~~> Certificates

        Right Click ~~> Import ~~> Follow Steps On Screen


- Restart the 'AppNeta Native Monitoringpoint' Service

The monitoring point contains a utility (check-appneta-connection.exe) to test connectivity and provide insight into connection issues.

How to run AppNeta Server Connectivity Test through CLI
https://knowledge.broadcom.com/external/article/374606/how-to-run-appneta-server-connectivity-t.html