Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Esri EAEP2201 Exam - Topic 1 Question 13 Discussion

A GIS administrator is responsible for maintaining the stability of a large internal ArcGIS Enterprise deployment. After the Domain CA certificate is replaced with a new one and the new PKCS#12 format PFX file is imported into all Portal for ArcGIS, ArcGIS Server, and ArcGIS Data Store deployments, the following issues are identified:When connecting directly to the Portal for ArcGIS administration endpoint via port 7443, the new certificate is not recognized and is considered invalidWhen connecting directly to the ArcGIS Server administration endpoint via port 6443, the new certificate is not recognized and is considered invalidWhen connecting to the ArcGIS Data Store endpoint via port 2443, the new certificate is recognized and considered validWhat is causing this issue?
A) ArcGIS Server and Portal for ArcGIS require that new root and new issuing authority certificates be imported explicitly into the software
B) Domain CA certificates are no longer supported by ArcGIS Server and Portal for ArcGIS and should be replaced by self-signed certificates
C) Domain CA certificates must be imported using a DER encoded binary X.509 (CER) format file for ArcGIS Server and Portal for ArcGIS
D) ArcGIS Server and Portal for ArcGIS are not compatible with PKCS#12 certificates

Esri EAEP2201 Exam - Topic 1 Question 13 Discussion

Actual exam question for Esri's EAEP2201 exam
Question #: 13
Topic #: 1
[All EAEP2201 Questions]

A GIS administrator is responsible for maintaining the stability of a large internal ArcGIS Enterprise deployment. After the Domain CA certificate is replaced with a new one and the new PKCS#12 format PFX file is imported into all Portal for ArcGIS, ArcGIS Server, and ArcGIS Data Store deployments, the following issues are identified:

When connecting directly to the Portal for ArcGIS administration endpoint via port 7443, the new certificate is not recognized and is considered invalid

When connecting directly to the ArcGIS Server administration endpoint via port 6443, the new certificate is not recognized and is considered invalid

When connecting to the ArcGIS Data Store endpoint via port 2443, the new certificate is recognized and considered valid

What is causing this issue?

Show Suggested Answer Hide Answer
Suggested Answer: A

When replacing SSL certificates in ArcGIS Enterprise components, ArcGIS Server and Portal for ArcGIS require the root and intermediate (issuing) certificates to be explicitly imported into their trust stores. Unlike the ArcGIS Data Store, which can often rely on the system-level trust store, ArcGIS Server and Portal maintain their own certificate trust management.

From the official ArcGIS Enterprise documentation:

''When using certificates issued by an internal or external CA, it is essential to also import the corresponding root and intermediate certificates into the Portal for ArcGIS and ArcGIS Server trust stores to ensure the certificate chain is validated properly.''

Option B is incorrect. Domain CA certificates are supported and recommended over self-signed certificates for internal deployments.

Option C refers to an acceptable format but does not address the issue, which is about importing the chain of trust.

Option D is incorrect; PKCS#12 (.pfx) certificates are supported but must be paired with the correct chain files.


ArcGIS Enterprise -- Managing CA certificates in Portal and ArcGIS Server environments

=====================

by Lynsey at May 04, 2026, 05:30 PM

Limited Time Offer

25%

Off

Get Premium EAEP2201 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Marguerita
1 month ago
I feel like the format of the certificate is important. Wasn’t there a section in the study materials about using DER encoded binary X.509 files?
upvoted 0 times
...
Fatima
1 month ago
I’m not entirely sure, but I think I saw a practice question that mentioned compatibility issues with PKCS#12 certificates. Could that be relevant?
upvoted 0 times
...
Alpha
1 month ago
I remember something about needing to import root and issuing authority certificates for ArcGIS Server and Portal. That might be the issue here.
upvoted 0 times
...

Save Cancel