Well Known URL cannot be parsed" / Invalid Registration Code

Description

Symptoms:

  • Users experience errors when attempting to log in.

  • Users receive an "invalid registration code" error if they attempt to install and register themselves.

  • UI Error Message: "Well Known URL cannot be parsed. Please ensure communication to the CSE Command Center is not prohibited."

Log Evidence: The application logs show an OpenID endpoint request failure due to a certificate chain error:

[2026-03-11 12:57:38.702-07:00] [error] Unable to complete openId Endpoint request
https://xxxxx.trust.banyanops.com/v2/.well-known/openid-configuration Error: self signed certificate in certificate chain
  at TLSSocket.onConnectSecure (node:_tls_wrap:1679:34)
  at TLSSocket.emit (node:events:519:28)
  at TLSSocket._finishInit (node:_tls_wrap:1078:8)
  at ssl.onhandshakedone (node:_tls_wrap:864:12)

Root Cause: The "self-signed certificate in certificate chain" error indicates that there is a Man-in-the-Middle (MITM) device (such as a corporate proxy, firewall, or SSL inspection tool) intercepting the connection between the application and the registration servers.

Resolution

To resolve his issue, the network administrator needs to create a security exclusion (SSL bypass) for the required domains.

  • Action: Whitelist/exclude banyanops.com and all of its subdomains from SSL/TLS inspection or proxy interception.

Related Articles

  • SonicWall Cloud Secure Edge (CSE) Licensing & Expiration Mega FAQ
    Read More
  • How to collect CSE Desktop App debug logs
    Read More
  • How to reach a destination behind an existing Site-to-Site (S2S) VPN from a Banyan user connected via Cloud Secure Edge (CSE)
    Read More

Categories

Cloud Secure Edge
not finding your answers?
Ask the Community
Chat