orchestrator
2023.10
false
UiPath logo, featuring letters U and I in white

Orchestrator User Guide

Automation CloudAutomation Cloud Public SectorAutomation SuiteStandalone
Last updated Dec 18, 2024

General troubleshooting

The remote certificate is invalid because of errors in the certificate chain: UntrustedRoot

The net::ERR_CERT_AUTHORITY_INVALID error occurs when your certificate expires or is involved in a certificate rotation process, indicating that it is now invalid.

It is most likely that the error occurs for the following reasons:

  • You cannot access Automation Suite;

  • Your robot is disconnected.





To fix this error, take the steps, described in the following example:

  1. Select the Not secure warning prompt. Then select Certificate is not valid from the dropdown menu.


  2. In the Certificate Viewer, select the Details tab. Then select Export and save the certificate.


  3. On your local machine, open certlm.msc and right-click the Personal folder, then select All Tasks, then select Import. Select the previously generated certificate and import it.


  4. In the same certlm.msc window from the previous step, right-click the Trusted Root Certification Authorities folder, then select All tasks, then select Import. Select the previously generated certificate and import it again.


  5. Connect the robot again to check that the error is fixed.
    Select the View site information icon. Select Connection is secure from the dropdown menu.

Browser group policies

Signing in to your Orchestrator service from the Assistant redirects you to the SSO page. In some browsers, you may be prompted to open UiPath Assistant. This happens due to the Assistant's protocol handler not being added to the browser's group policies.

To prevent this behavior, make sure to follow the next steps, depending on the browser (Chrome/Microsoft Edge):

  1. Open Registry Editor.
  2. Navigate to Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google\Chrome/ or Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Edge, depending on the browser you use.
  3. Add a new key and name it AutoLaunchProtocolsFromOrigins.
  4. Double-click (Default) to edit the key.
  5. In the Edit String dialog, in the Value data field, add [{"allowed_origins": ["<https://myOrchestrator.uipath.com/"],"protocol":> "com.uipath.robot.oidc"}] and click OK.
    Important: The AutoLaunchProtocolsFromOrigins policy requires Chrome 85 or later.
  6. Close all browser tabs and relaunch the browser.
  7. Verify that your browser applied the new policy by navigating to chrome://policy or edge://policy. The recently added policy should be listed under the Chrome Policies or Microsoft Edge section with the OK status.

Was this page helpful?

Get The Help You Need
Learning RPA - Automation Courses
UiPath Community Forum
Uipath Logo White
Trust and Security
© 2005-2024 UiPath. All rights reserved.