When you add a 3rd party certificate for the admin UI, you may start seeing error as below
2023-03-10T19:33:22.196655+0000 cz-configd[663]: WARNING [logserver] Failed TLS handshake to remote controller's admin API at AppGate.mycompany.com:8443: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1108)
That error indicate the root CA is missing and LogServer can’t trust it.
To solve it you just need to upload the 3rd party CA into trusted certificate, something as below (assuming the 3rd party in this case is Digicert as an example)
