Remote certificate has errors:, Certificate name mismatch., A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider root cause
During the ssl connection, windows update is invoked to update the Root Certificates. This needs internet connection. If the machine is connected to internet, no delay will be seen. If the machine is not connected to internet, 15 second delay is seen because that is the default timeout value for network retrieval of the updated Root Certificates. look at below for more details The following sections provide summaries of how certificate revocation checking works. The summaries include: Basic Certificate Chain Validation Validating Revocation Information Network Retrieval and Caching Basic Certificate Chain Validation When CryptoAPI builds and validates a certificate chain, three distinct phases take place: All possible certificate chains are built using locally cached certificates. If none of the certificate chains ends in a self-signed certificate, CryptoAPI then selects the best possible chain and attempt to retrieve issuer certificates specified in the authority