This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Expired certificate on port 29120

We're seeing errors like the following in /opt/netiq/npum/logs/unifid.log:

Mon Dec 14 12:53:02 2020, 332, 2857514752, 2026, Warning, Peer certificate [CN = <FM hostname>] has expired: Wed Dec 09 09:09:49 2020
Mon Dec 14 12:53:02 2020, 333, 2857514752, 2026, Error, Peer verification error for <FM hostname>(<FM IP>) accessing regclnt.svcInfo unable to get issuer certificate

If I look at the certificate on port 29120 of this host, the Framework Manager console, I see it expired. This is not the certificate we installed on the Framework Manager console for https traffic but one that seems to be used for internal communication between agents. What happens when this certificate expires? How do we generate a new certificate?

Looks like this is preventing us from looking at the Credential Vault and info on agents in Console->Hosts.

Parents
  • 0

    I restarted the PAM daemon on the FM console server with /etc/init.d/npum but the cert wasn't recreated. I then rebooted the server a few hours later and the cert was rebuilt. Should the restart of the daemon fixed the cert issue?

Reply
  • 0

    I restarted the PAM daemon on the FM console server with /etc/init.d/npum but the cert wasn't recreated. I then rebooted the server a few hours later and the cert was rebuilt. Should the restart of the daemon fixed the cert issue?

Children
No Data