Certificate error enrolling Android for Smartphone authenticator

  • 7024911
  • 06-Nov-2020
  • 06-Nov-2020


Advanced Authentication 6.3
Smartphone authentication method
NetIQ Auth app on Smartphone 


Error enrolling smart phone authenticator:  
java.security.cert.CertPathValidatorException: Trust anchor for certification path not found


Enter all intermediate certificates in the certificate chain in the "Server Options" section of the Advanced Authentication Admin portal (https://<AA server address>/Admin).  

Note that self signed certificates are not supported and do not work. 

For more detail see the online documentation here
and here

Additional Information

Troubleshooting tip:

Open a bowser on the smart phone and brows to the server URL listed in Methods, Smartphone  in the Advanced Authentication Admin portal.  It should show as  https://<AAserverURL>/smartphone
You must be able to browse to this site without certificate errors in order to enroll the smart phone method.