Enterprise Search Error

Topics: Support
Jan 9, 2014 at 7:42 PM

I'm trying to run the script on the second of two batch processing servers in my prod farm and I can't get around the following error with enterprise search:

  • Provisioning Enterprise Search...
    • Configuring search service...Done.
    • Fixing registry permissions for Search Host Controller Service...Done.
    • Checking Search Service Instance...Already Online.
    • Checking Search Service Application...Already exists.
    • Setting content access account for Search Service Application...
      Set-SPEnterpriseSearchServiceApplication : The underlying connection was
      closed: Could not establish trust relationship for the SSL/TLS secure channel.
      At C:\SP\AutoSPInstaller\AutoSPInstallerFunctions.ps1:4726 char:15
  • $sa | Set-SPEnterpriseSearchServiceApplication
    -DefaultContentAccessAcco ...
  • ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    ~~~
    • CategoryInfo : InvalidData: (Microsoft.Offic...viceApplication:
      SetSearchServiceApplication) [Set-SPEnterpriseSearchServiceApplication], W
      ebException
    • FullyQualifiedErrorId : Microsoft.Office.Server.Search.Cmdlet.SetSearchS
      erviceApplication
    • Using existing cloned search topology.
    • Checking admin component...Not requested for this server.
    • Admin component(s) already exist(s) in the farm.
    • Checking content processing component...Already exists on this server.
    • Content processing component(s) already exist(s) in the farm.
    • Checking analytics processing component...Already exists on this server.
    • Analytics processing component(s) already exist(s) in the farm.
    • Checking crawl component...Already exists on this server.
    • Crawl component(s) already exist(s) in the farm.
    • Checking index component...Not requested for this server.
    • Index component(s) already exist(s) in the farm.
    • Checking query processing component...Not requested for this server.
    • Query component(s) already exist(s) in the farm.
    • Activating Search Topology...--------------------------------------------------------------
  • Script halted!
Exception : System.Management.Automation.MethodInvocationException:
                     Exception calling "Activate" with "0" argument(s): 
                    "The underlying connection was closed: Could not 
                    establish trust relationship for the SSL/TLS secure 
                    channel." ---> System.Net.WebException: The underlying 
                    connection was closed: Could not establish trust 
                    relationship for the SSL/TLS secure channel. ---> Syste
                    m.Security.Authentication.AuthenticationException: The 
                    remote certificate is invalid according to the 
                    validation procedure.
                       at System.Net.Security.SslState.StartSendAuthResetSi
                    gnal(ProtocolToken message, AsyncProtocolRequest 
                    asyncRequest, Exception exception)
                       at 
                    System.Net.Security.SslState.StartSendBlob(Byte[] 
                    incoming, Int32 count, AsyncProtocolRequest 
                    asyncRequest)
                       at System.Net.Security.SslState.ProcessReceivedBlob(
                    Byte[] buffer, Int32 count, AsyncProtocolRequest 
                    asyncRequest)
                       at 
Any thoughts or suggestions would be greatly appreciated!
Coordinator
Jan 21, 2014 at 4:19 PM
Can you check the ULS logs for the corresponding entry, and see if prior or subsequent ULS entries give a hint as to which certificate is being referred to? Then, perhaps try to find that cert on the server in question and check what could be causing it to be detected as invalid.

Also, do your servers have outbound Internet access?

Brian