I got the same. I can generate a new appliance certificate but still get an error regarding the SCMB certificate.

The appliance is using an SCMB (State-Change Message Bus) or MSMB (Metric Streaming Message Bus) certificate created using SHA-1.

Where are you seeing this message?  If you are upgrading from an older version, the certificate key pairs were generated with the SHA-1 algorithm and will require you to regenerate them.  You can regenerate the appliance SSL Certificate from the Settings menu.  For SCMB/MSMB, you will need to use the REST API, or the Remove-HPOVScmbCertificate Cmdlet that will be in the next 3.00 PowerShell library release.

Thanks Chris,

I see the error in the activity log, and also under appliance alerts in the dashboard. The resolution text says: "Delete the old certificate, and then acquire the new certificates."

I have regenerated the appliance SSL certificate OK but am new to OneView / REST API. How do I regenerate the SCMB certificate?

I've installed the Powershell 3.00 library but don't see any options around SCMB certificates, other than Get-HPOVScmbCertificates which I don't think is what i need??

Thanks!

EDIT: This was a 2.00.07 appliance updated to 3.00.05

Hi,

I got he same Error.

Did it as the Help say:

Creating a self-signed certificate
1.From the main menu, select Settings.
2.Click Security.
3.Select Actions→Create self-signed certificate.
4.Supply the data requested on the screen. See Create Self-Signed Certificate screen details if you need assistance with your entries.
5.Enter optional information, as needed.
6.Click OK.
7.Verify that the certificate was created. The certificate information is shown on the screen.

Simply press OK, and thew Certificate changes to sha-256

The upcoming 3.0.1128.2242 3.00 library will have the Remove-HPOVScmbCertificate Cmdlet.  In the mean time you can use the following Cmdlet to remove the SCMB certs.  Warning: There will not be a prompt to confirm.

Send-HPOVRequest -Uri /rest/certificates/ca/rabbitmq_readonly -Method DELETE