- Community Home
- >
- Software
- >
- HPE OneView
- >
- Certificate Issue after Upgrading the OneView 2.0 ...
-
-
Forums
- Products
- Servers and Operating Systems
- Storage
- Software
- Services
- HPE GreenLake
- Company
- Events
- Webinars
- Partner Solutions and Certifications
- Local Language
- China - 简体中文
- Japan - 日本語
- Korea - 한국어
- Taiwan - 繁體中文
-
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
- HPE Blog, Austria, Germany & Switzerland
- Blog HPE, France
- HPE Blog, Italy
- HPE Blog, Japan
- HPE Blog, Middle East
- HPE Blog, Latin America
- HPE Blog, Russia
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Blog, Poland
-
Blogs
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Blog, Latin America
- HPE Blog, Middle East
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
-
Information
- Community
- Welcome
- Getting Started
- FAQ
- Ranking Overview
- Rules of Participation
- Tips and Tricks
- Resources
- Announcements
- Email us
- Feedback
- Information Libraries
- Integrated Systems
- Networking
- Servers
- Storage
- Other HPE Sites
- Support Center
- Aruba Airheads Community
- Enterprise.nxt
- HPE Dev Community
- Cloud28+ Community
- Marketplace
-
Forums
-
Forums
-
Blogs
-
Information
-
English
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-01-2016 10:37 PM
11-01-2016 10:37 PM
Certificate Issue after Upgrading the OneView 2.0 to 3.0
Did anyone faced the below Issue after upgrading OneView Appliance to 3.0 from its Pervious Version 2.0?
Issue: "The appliance is using a certificate created using SHA-1 to secure webserver communication. SHA-1 certificates are insecure and will not be supported by most modern browsers in 2017 or by future versions of the appliance. SHA-1 certificates must be replaced by SHA-256 certificates".
- Tags:
- certificate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-02-2016 04:01 AM
11-02-2016 04:01 AM
Re: Certificate Issue after Upgrading the OneView 2.0 to 3.0
I got the same. I can generate a new appliance certificate but still get an error regarding the SCMB certificate.
The appliance is using an SCMB (State-Change Message Bus) or MSMB (Metric Streaming Message Bus) certificate created using SHA-1.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-02-2016 03:36 PM
11-02-2016 03:36 PM
Re: Certificate Issue after Upgrading the OneView 2.0 to 3.0
Where are you seeing this message? If you are upgrading from an older version, the certificate key pairs were generated with the SHA-1 algorithm and will require you to regenerate them. You can regenerate the appliance SSL Certificate from the Settings menu. For SCMB/MSMB, you will need to use the REST API, or the Remove-HPOVScmbCertificate Cmdlet that will be in the next 3.00 PowerShell library release.
I am an HPE employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-03-2016 03:57 AM - edited 11-03-2016 03:58 AM
11-03-2016 03:57 AM - edited 11-03-2016 03:58 AM
Re: Certificate Issue after Upgrading the OneView 2.0 to 3.0
Thanks Chris,
I see the error in the activity log, and also under appliance alerts in the dashboard. The resolution text says: "Delete the old certificate, and then acquire the new certificates."
I have regenerated the appliance SSL certificate OK but am new to OneView / REST API. How do I regenerate the SCMB certificate?
I've installed the Powershell 3.00 library but don't see any options around SCMB certificates, other than Get-HPOVScmbCertificates which I don't think is what i need??
Thanks!
EDIT: This was a 2.00.07 appliance updated to 3.00.05
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-03-2016 08:08 AM
11-03-2016 08:08 AM
Re: Certificate Issue after Upgrading the OneView 2.0 to 3.0
Hi,
I got he same Error.
Did it as the Help say:
Creating a self-signed certificate
1.From the main menu, select Settings.
2.Click Security.
3.Select Actions→Create self-signed certificate.
4.Supply the data requested on the screen. See Create Self-Signed Certificate screen details if you need assistance with your entries.
5.Enter optional information, as needed.
6.Click OK.
7.Verify that the certificate was created. The certificate information is shown on the screen.
Simply press OK, and thew Certificate changes to sha-256
======================
I'm not an HPE employee, so I can be wrong.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-03-2016 08:46 AM
11-03-2016 08:46 AM
Re: Certificate Issue after Upgrading the OneView 2.0 to 3.0
The upcoming 3.0.1128.2242 3.00 library will have the Remove-HPOVScmbCertificate Cmdlet. In the mean time you can use the following Cmdlet to remove the SCMB certs. Warning: There will not be a prompt to confirm.
Send-HPOVRequest -Uri /rest/certificates/ca/rabbitmq_readonly -Method DELETE
I am an HPE employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-03-2016 09:27 AM
11-03-2016 09:27 AM
Re: Certificate Issue after Upgrading the OneView 2.0 to 3.0
Thanks Chris,
I've issued that command and successfully deleted the Certificate (StatusCode 204)
Do I need to generate a new one, and if so, how?
Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-03-2016 09:29 AM
11-03-2016 09:29 AM
Re: Certificate Issue after Upgrading the OneView 2.0 to 3.0
Yes, the Get-HPOVScmbCertificates Cmdlet will regenerate and download th SCMB certificates.
I am an HPE employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-03-2016 10:05 AM
11-03-2016 10:05 AM
Re: Certificate Issue after Upgrading the OneView 2.0 to 3.0
@ChrisLynch wrote:Yes, the Get-HPOVScmbCertificates Cmdlet will regenerate and download th SCMB certificates.
Great, thanks. Worked a treat. Cheers!
Hewlett Packard Enterprise International
- Communities
- HPE Blogs and Forum
© Copyright 2022 Hewlett Packard Enterprise Development LP