Anthony45000

I found a solution… If “scan encrypted connections” is unchecked, certificate was ok => adding the okta website to “trusted address” is working !

Hello, We encounter an issue with the new versions of KES Client (11.3 or 11.4) The certificate selection windows in IE or Chrome doesn’t appears when Web Threat Protection is active. This certificate is used for DeviceTrust (Okta), and it request this validation (IE window, similar in Chrome) : Websites added to exclusion, with light heuristic, uncheck all settings : nothing worked except disable the Web Threat Protection. Thanks.

You can compare the packages content (files size and/or date), path are in properties and should be \\servername\KLSHARE\PackagesKLShare\… Maybe an upgrade effect : first agent manually downloaded, second auto-downloaded ?