I have my zcm servers running on ports 81 and 444. I can authenticate and refresh policies successfully on the first server installed in the zone, but none of the others. I have been manipulating which server I'm connecting to by modifying the Closest Server default rule. The error message is typically "user authentication failed during a refresh"

It seems that somehow casa is connecting on the wrong port... it should be using 444, not 443 which is listed. 443 is for my OES services. I've double-checked the servers and they are all on 81/444, as i can login to the management console via those ports on all of them.

Here is an excerpt from my casaauthtoken.log while trying to login to one of the problematic servers.

Code:
CASA_AuthToken -FindAuthTokenEntryInCache- Start
CASA_AuthToken -FindAuthTokenEntryInCache- End, pEntry = 0x0
CASA_AuthToken -ObtainAuthTokenFromServer- Start
CASA_AuthToken -ObtainAuthTokenFromServer- Hostname = 131cl1.gsd
CASA_AuthToken -ObtainAuthTokenFromServer- port = 443
CASA_AuthToken -OpenRpcSession- Start
CASA_AuthToken -OpenRpcSession- Host = 131cl1.gsd
CASA_AuthToken -OpenRpcSession- HostPort = 443
CASA_AuthToken -CopyMultiToWideAlloc- Start
CASA_AuthToken -CopyMultiToWideAlloc- End, retStatus = 00000000
CASA_AuthToken -OpenRpcSession- End, pSession = 06312518
CASA_AuthToken -BuildGetAuthPolicyMsg- Start
CASA_AuthToken -BuildGetAuthPolicyMsg- End, pMsg = 0x6312378
CASA_AuthToken -Rpc- Start
CASA_AuthToken -InternalRpc- Start
CASA_AuthToken -CopyMultiToWideAlloc- Start
CASA_AuthToken -CopyMultiToWideAlloc- End, retStatus = 00000000
CASA_AuthToken -InvalidCertsFromHostAllowed- Start
CASA_AuthToken -InvalidCertsFromHostAllowed- End, retStatus = 0
CASA_AuthToken -SecureFailureStatusCallback- Start
CASA_AuthToken -SecureFailureStatusCallback- End
CASA_AuthToken -InternalRpc- Secure connection failure, flags = 8
CASA_AuthToken -CopyWideToMultiAlloc- Start
CASA_AuthToken -CopyWideToMultiAlloc- End, retStatus = 00000000
CASA_AuthToken -CopyWideToMultiAlloc- Start
CASA_AuthToken -CopyWideToMultiAlloc- End, retStatus = 00000000
CASA_AuthToken -UserApprovedCert- Start
CASA_AuthToken -UserApprovedCert- Invalid CA in Cert from Host = 131cl1.gsd
CASA_AuthToken -UserApprovedCert- Approving Invalid Cert from Host = 131cl1.gsd
CASA_AuthToken -UserApprovedCert- Invalid Cert Subject = GSD

131cl1.gsd
CASA_AuthToken -UserApprovedCert- Invalid Cert Issuer = Organizational CA

GSD
CASA_AuthToken -UserApprovedCert- End, retStatus = 0
CASA_AuthToken -InternalRpc- User did not approve invalid certificate from 131cl1.gsd
CASA_AuthToken -InternalRpc- End, retStatus = C7FF0023
CASA_AuthToken -Rpc- End, retStatus = C7FF0023
CASA_AuthToken -ObtainAuthTokenFromServer- GetAuthPolicy Rpc failure, error = C7FF0023