# Troubleshooting

- [CA Validity Period](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/ca-validity-period.md): Perform the recommended actions based on the status of the CA validity period that was reported by PKI health check.
- [CRL Validity Period](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/crl-validity-period.md): Perform the recommended actions based on the status of the CRL validity period that was reported by PKI health check.
- [Root Certificate Issued Non-CA Leaves](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/root-certificate-issued-non-ca-leaves.md): Perform the recommended actions that ensures a proper Certificate Authority (CA) hierarchy is followed by verifying that leaf certificates are not issued directly by a root CA .
- [Role Allows Implicit Localhost Issuance](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/role-allows-implicit-localhost-issuance.md): Perform the recommended actions that ensures roles do not unintentionally allow certificates to be issued for localhost-based domains.
- [Role Allows Glob-Based Wildcard Issuance](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/role-allows-glob-based-wildcard-issuance.md): Perform the recommended actions to ensure that none of the defined roles simultaneously allow both glob domains and wildcard certificate issuance.
- [Performance Impact](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/performance-impact.md): Perform necessary actions to ensure that no\_store=false is applied only to non-ACME roles, configure short certificate lifetimes, and use BYOC revocations to effectively manage certificate cleanup.
- [Accessibility of Audit Information](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/accessibility-of-audit-information.md): Perform necessary actions to ensure that vHSM’s audit configurations follow the recommended practices for safe and unsafe audit parameters.
- [Allow If-Modified-Since Requests](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/allow-if-modified-since-requests.md): Perform necessary actions to ensure optimal header configuration for efficient caching and improved client-side performance .
- [Auto-Tidy Disabled](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/auto-tidy-disabled.md): Take the necessary steps to ensure that vHSM’s auto-tidy functionality is enabled, allowing for efficient and regular cleanup of revoked certificates, expired certificate data, and related resources.
- [Tidy Hasn't Run](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/tidy-hasnt-run.md): Perform necessary steps to ensure that the tidy process runs within a recommended timeframe.
- [Too Many Certificates](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/too-many-certificates.md): Take necessary steps to monitor the total number of  stored certificates in the vHSM cluster.
- [Enable ACME Issuance](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/enable-acme-issuance.md)
- [ACME Response Headers Configuration](https://docs.enclaive.cloud/virtual-hsm/troubleshooting/acme-response-headers-configuration.md): Perform necessary steps to ensure that the ACME protocol does not fail during the client-server communication.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.enclaive.cloud/virtual-hsm/troubleshooting.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.