- Community Home
- >
- Storage
- >
- HPE Nimble Storage
- >
- Array Setup and Networking
- >
- Problem with Custom certificate installation
-
-
Forums
- Products
- Servers and Operating Systems
- Storage
- Software
- Services
- HPE GreenLake
- Company
- Events
- Webinars
- Partner Solutions and Certifications
- Local Language
- China - 简体中文
- Japan - 日本語
- Korea - 한국어
- Taiwan - 繁體中文
-
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
- HPE Blog, Austria, Germany & Switzerland
- Blog HPE, France
- HPE Blog, Italy
- HPE Blog, Japan
- HPE Blog, Middle East
- HPE Blog, Latin America
- HPE Blog, Russia
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Blog, Poland
-
Blogs
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Blog, Latin America
- HPE Blog, Middle East
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
-
Information
- Community
- Welcome
- Getting Started
- FAQ
- Ranking Overview
- Rules of Participation
- Tips and Tricks
- Resources
- Announcements
- Email us
- Feedback
- Information Libraries
- Integrated Systems
- Networking
- Servers
- Storage
- Other HPE Sites
- Support Center
- Aruba Airheads Community
- Enterprise.nxt
- HPE Dev Community
- Cloud28+ Community
- Marketplace
-
Forums
-
Forums
-
Blogs
-
Information
-
English
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
01-12-2017 11:52 PM
01-12-2017 11:52 PM
I have made an update from a Nimble Array CS215 to software version 3.6.1.0-419853-opt.
With this version, I can create a custom certificate.
I make the following steps, according to Command Reference version 3:
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Step 1:
create CSR:
cert --gen custom-csr --subject '/C=X/ST=X/L=X/O=X/OU=X/CN=FQDN' --dnslist FQDN,DomainName --iplist IPAddress
I make the CN=FQDN, not the Array Name
I make a costum certificate with the csr output.
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Step 2:
Download CA Certificate from our CA Certificate Server and install it on the nimble with:
Nimble OS $ cert --import custom-ca
Please enter certificate in PEM format followed by ^D:
-----BEGIN CERTIFICATE-----
MIIG...
...
...
BhQQ==
-----END CERTIFICATE-----Nimble OS $
Output from cert --list:
...
custom-ca: (Pending) /DC=X/DC=X/DC=X/CN=X
...
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Step 3:
Install signed certificate from step 1:
Nimble OS $ cert --import custom
Please enter certificate in PEM format followed by ^D:
-----BEGIN CERTIFICATE-----
MIIHcj...
...
...9iFRs=
-----END CERTIFICATE-----ERROR: Keystore(PKCS12) file creation failed: unable to load certificates
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Why I can not install the signed certificate from the csr?
Solved! Go to Solution.
- Tags:
- certificate
- keystore
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
01-13-2017 09:47 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
01-13-2017 11:34 AM
01-13-2017 11:34 AM
Re: Problem with Custom certificate installation
Hi Moshe,
That was the solution.
Many thanks for the the straight tip.
Thanks,
Mario
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
04-07-2017 06:48 AM
04-07-2017 06:48 AM
Re: Problem with Custom certificate installation
Hi I already have a signed wildcard SSL that I want to use, but when I tried to import it says no custom CSR file exists. I guess I have to create a CSR. But when I created the CSR then it says CRS mismatch when trying to import the wildcard SSL. Is wild card SSL supported?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
04-12-2017 03:43 AM
04-12-2017 03:43 AM
Re: Problem with Custom certificate installation
Hi Jason, wild card is not supported with the admin commands as the CSR needs to be validated, this can't be done with a wild card.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
04-13-2017 09:13 AM
04-13-2017 09:13 AM
Re: Problem with Custom certificate installation
Hello,
are Wildcard certs that include the FQDN as an SNI supported?
I can create copies of our wildcard certs with specific hosts included (from DigiCert), so our cert would effectively include
example.com,
*.example.com,
nimble.example.com
Alternatively, are there plans to add support for wildcards in the future?
Hewlett Packard Enterprise International
- Communities
- HPE Blogs and Forum
© Copyright 2022 Hewlett Packard Enterprise Development LP