Troubleshooting for certificate validation failure

 How to check for respective certificates in the Windows Store    

• Certificate validation is a process that ensures the server's authenticity during remote sessions.

• Check to see if your remote customer's PC has updated certificates in the Windows Store.

• If the certificate is not available, you can export it from the target server and manually install it on the device certificate store.

 How to export the required certificate from the correct domain       

Follow these steps to export the certificate:

1. Open a web browser and navigate to https://gateway.zohoassist.com.

2. Click the lock icon in the address bar.
   

3. Select Connection is secure and then click Certificate is valid or the Certificate icon, depending on your browser.
   

4. In the Details tab, view the certificate chain and select the topmost certificate (parent certificate).

5. Click Export to download the certificate.
   

6. Choose a directory to save the certificate to your local device.
   

How to install the exported certificate  

1. Navigate to the folder where you saved the certificate.

2. Double-click the certificate file to open it.

3. Click Install Certificate in the certificate details wizard.
   

4. Choose Local Machine as the store location and click Next.
   

5. Complete the wizard and click Finish.

6. Once the installation is successful, a message will appear: “The import was successful.” Click OK.

How to enable automatic root certificate updates  

1. To enable the automatic root certificate update on a Windows machine via the Group Policy Editor:  

2. Press Win + R, type gpedit.msc, and press Enter.

3. Navigate to:
   Computer Configuration > Administrative Templates > System > Internet Communication Management > Internet Communication settings.

4. Double-click Turn off Automatic Root Certificates Update.

5. Set it to Disabled to enable automatic updates.