- Community Home
- >
- Software
- >
- HPE OneView
- >
- Re: Clear Locked Alerts for Expired Leaf Certifica...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-29-2018 05:09 AM
тАО01-29-2018 05:09 AM
Clear Locked Alerts for Expired Leaf Certificates
Hi,
Since upgrading to HP OneView 4.0 we have multiple alerts that will not clear due to locked alerts relating to expired certificates for a number of our iLO's and Onboard Administrators. It appears they will not clear no matter what we do. Things tried are
- Delete expired certificates.
- Create new certficiates from our CA.
- Create new certificates from our CA with the original name of expired certificate
- Remove and Re-Add Enclosures and Servers.
- Rescan
- Reboot
- Firmware updates on all of the iLO's and OA's.
We would like to close these locked alerts, but I gather you cannot and it must clear itself automatically. Problem is they wont clear automatically, so either its a bug or we would like some assistance if possible to clear them?
Thanks in advance.
- Tags:
- certificate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-29-2018 05:36 AM
тАО01-29-2018 05:36 AM
Re: Clear Locked Alerts for Expired Leaf Certificates
We currently have exactly the same problem and have tried everything you have listed.
The appliance is saying to add a new cert with the same alias name as the expired one. Once this has been done the alert does not clear.
Following the thread for a resolution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-29-2018 09:11 AM
тАО01-29-2018 09:11 AM
Re: Clear Locked Alerts for Expired Leaf Certificates
Yep, we have same problem but with C7000 Onboard Administrator certificate. After regenerating of certificate one alert goes away, but other two are still locked: for IPv6 address and for enclosure serial number. How to get rid of them?
Refreshing enclosure not helping, deleting old certificates too. In certificate configuration i have good certificates now for all three options: ipv4, ipv6 and SN:
Something is really broken with certificate management in OV4.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-02-2018 12:35 AM
тАО02-02-2018 12:35 AM
Re: Clear Locked Alerts for Expired Leaf Certificates
@BenjieE Have you had a response from HPE yet? They seem to have replied to all recent threads apart from this one which is pretty disappointing. Getting tired of looking at locked alerts now ha!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-02-2018 01:32 AM
тАО02-02-2018 01:32 AM
Re: Clear Locked Alerts for Expired Leaf Certificates
Hey ServerParrott,
Nope not a peep from HP about this issue yet sadly.
Thanks
Benjie
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-27-2018 04:14 PM
тАО02-27-2018 04:14 PM
Re: Clear Locked Alerts for Expired Leaf Certificates
I have a case opned at Level 2 for this issue as well.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-28-2018 03:20 AM
тАО02-28-2018 03:20 AM
Re: Clear Locked Alerts for Expired Leaf Certificates
Hi Matt,
It would be great if you could share the results of their findings. I am expecting/hoping it to be fixed in the next release judging by some of the comments on others posts in this forum.
Thanks
Ben
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-13-2018 03:41 AM
тАО09-13-2018 03:41 AM
Re: Clear Locked Alerts for Expired Leaf Certificates
It would actually be ideal if we had the option to simply trust the root certificate and the leaf certificates would be trusted as well regardless if they renew. I have domain controllers which I use for LDAP authentication which will go out and renew their own certificate and everything I use other than OneView seems to be fine with simply trusting the root CA.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-16-2018 10:28 PM
тАО09-16-2018 10:28 PM
Re: Clear Locked Alerts for Expired Leaf Certificates
Hi Kelly M Knowles,
Starting version 4.0.x, we do allow trusting just the top most Root CA, allowing LDAP / AD servers to freely renew their certificates, retaining the top most Root CA.
Let us know if this is not working and open a support case with a support dump.
Regards,
Bhaskar
I am an HPE employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-17-2018 11:30 PM - edited тАО09-17-2018 11:32 PM
тАО09-17-2018 11:30 PM - edited тАО09-17-2018 11:32 PM
Re: Clear Locked Alerts for Expired Leaf Certificates
Try:
- Factory Reset applience
- before add enclosure OneView Settings - security - Certificates - Disable Certificate validation and Certificate revocation checking (using CRLs).
- add enclosure