Katalyst: Access blocked due to SSL certificate issues

Description

• Users cannot access the Katalyst web application over HTTPS; browsers may show security warnings or refuse the connection.
• The issue typically occurs around the time an SSL/TLS certificate expires or is replaced.
• The Katalyst application itself is running, but users are blocked by the browser security error.

Solution

• Confirm that the SSL/TLS certificate used by the Katalyst site is valid and not expired:
  • Check the certificate details in a browser (valid‑to date, issuer, CN/SAN values).
• If the certificate is expired or invalid:
  • Obtain a new certificate from the customer’s preferred certificate authority (internal PKI or public CA).
  • Install the new certificate on the web server or reverse proxy that fronts Katalyst.
  • Ensure the hostname used by users matches a name in the certificate (CN/SAN).
• Restart or reload the web server/proxy configuration so the new certificate is active.
• If users still see warnings, verify:
  • Intermediate certificates are correctly installed.
  • Corporate proxy or SSL inspection is not substituting an invalid certificate.
• Note, the customer is responsible for purchasing/renewing certificates; our Technical Support or internal IT can assist with installation and configuration steps.