メインコンテンツまでスキップ

HTTPS を使用すると ONTAP AutoSupport メッセージが失敗する: SSL certificate problem

Views:
300
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core<a>Data ONTAP 8</a><a>1028719</a>
Last Updated:

環境

  • ONTAP 9
  •  AutoSupport用のHTTPS転送プロトコル

問題

  • 転送としてHTTPSを使用するとAutoSupport メッセージが失敗する:

::> system node autosupport history show -node node_name -seq-num <seq_num> -instance
                 Node: node_name
     AutoSupport Sequence Number: seq_num
   Destination for This AutoSupport: https
            Trigger Event: callhome.management.log
         Time of Last Update: 1/12/2021 02:58:59
          Status of Delivery: transmission-failed
          Delivery Attempts: 15
         AutoSupport Subject: MANAGEMENT_LOG
             Delivery URI: 10.106.130.129:8080(support.netapp.com/put/AsupPut)
              Last Error: SSL certificate problem: unable to get local issuer certificate

::> autosupport check show-details -node node_name
      Node: node_name
    Category: http-https
   Component: http-put-destination
     Status: failed
     Detail: HTTP/S PUT connectivity check failed for destination:
           https://support.netapp.com/put/AsupPut/ via proxy -
           123.123.123.123:8080. Error: Peer certificate can not be
           authenticated with given Certificate Authority
           certificates.
 Corrective Action: Certificate issue. Please make sure you have the correct
           Root Certificate installed
   Component: http-post-destination
     Status: failed
     Detail: HTTP/S POST connectivity check failed for destination:
           https://support.netapp.com/asupprod/post/1.0/postAsup
           via proxy - 123.123.123.123:8080. Error: Peer certificate
           can not be authenticated with given Certificate
           Authority certificates.
 Corrective Action: Certificate issue. Please make sure you have the correct
           Root Certificate installed

  • 転送プロトコルにHTTPを使用すると、AutoSupport メッセージはネットアップに正常に配信されます。
  • 同様のエラーメッセージ: 
    • message: SSL certificate problem: self signed certificate in certificate chain

    • Error: Peer certificate 指定したで認証できません Certificate Authority certificates.

    • Error: asup.post.drop: AutoSupport message (HA Group Notification from node01 (USER_TRIGGERED (TEST:Test)) NOTICE) was not posted to NetApp. The system will drop the message.

  • にエラーメッセージが追加されました  /mroot/etc/log/mlog/notifyd.log:

::> system node run -node <node_name> -command rdfile /etc/log/mlog/notifyd.log

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

Scan to view the article on your device