Unable to Open Creo View when Windchill is using HTTPS

I did not see this listed above:

https://www.ptc.com/en/support/article/CS385890?source=search

Basic authentication? Can you post your debug logs from the Creo View session?

What version of Windchill you are using? Note that starting 12.1, Windchill uses TLS1.3/SSL3 which needs to be enabled in the config files.

regards

~Syed

I installed Fiddler and enabled HTTPS decoding.  Attempting to open a representation from Windchill threw this (Fiddler) error message:

This system is on an isolated network that does not have internet access.

The message about checking for certificate revocation seems to point back to CS312299.  I repeated the steps in that article again, and this time I noticed the comment about the second one not taking affect until restarting the computer.  (The PTC article does not mention needing to restart.)

After a restart Creo View will now launch successfully, but the pview.exe process(es) will not terminate after closing.  End users (who make this same change) can see objects in Creo View, but from the servers Creo View just displays a blank white page.  The mouse seems to act like there are lines present, but none of them are visible or selectable.  Just for fun I downloaded a representation and opened it locally in Creo View on the server (without Windchill) and still get the same behavior, so apparently the 'not displaying geometry' issue in Creo View is unrelated to HTTPS.  Any suggestions on that?

@TomU You are able to fix this issue, even we are facing same issue as below using 12.1.2.1.Nothing seems to be working.Please provide your inputs If you solved the same.Thank you - Srinivas

After 4 months of debugging, we are able to solve the issue:

Few things to consider:

In our scenario, we utilize self-signed certificates provided by our in-house IT for systems that are not internet-connected. I believe those using third-party certificates would not encounter this issue, which I will explain further.

1. Starting from the beginning, I received SSL certificates from IT and configured them in Windchill. Everything is functioning well except for an error with Creo View.

2. Upon contacting PTC, they activated logging, and the HTTP log displayed the following error:

Info 5:43:12.544 15 Mar 2024 2680 10496 internet DownloadTask HttpSendRequest failed, error: 12057 -

HTTP Error 12057 indicates an inability to validate the SSL certificate's revocation because the revocation server is unavailable. Disabling certificate revocation resolved the issue, suggesting a need for correction.

For further troubleshooting, we installed Fiddler to determine what exactly Creo View was attempting to access. We discovered that at the error step, it was trying to download a CRL file. CRL stands for Certificate Revocation List. While it could download the CRL, it failed to validate the revocation, resulting in an error.

At this juncture, I am consulting with both my internal IT and PTC to identify the issue with the CRL. PTC responded that the IT team needs to address the revocation issue, and our internal IT is uncertain about the necessary certificate changes. Further analysis by the internal IT team revealed that the Delta CRL was not properly configured, leading to the problems. Once they rectified this, Creo View began functioning correctly. As these are internally self-signed certificates, we experienced configuration issues, whereas third-party certificates should be properly configured.