HPE Community
StoreEasy Storage
1822456 Members
3016 Online
109642 Solutions
New Discussion юеВ

HPE StoreEasy 1660

 
SOLVED
Go to solution
Chiefbibb
Established Member

тАО02-17-2021 01:14 PM

тАО02-17-2021 01:14 PM

HPE StoreEasy 1660

Working on a US Army classified system/network, trying to upgrade NAS 1660 StoreEasy Management Console from 1.2.2.66 to 1.2.6.25. A vulnerability scan identified the need to upgrade.

We are getting an error "The wizard was interrupted before HPE StoreEasy management console could be complely installed" We have tried installing older versions and getting same error.

We looked in \nas\logs\HPE StoreEasy Telentry Service error.logs and application.logs and saw an error pointing to a file missing "SemcServiceCertificate.pem missing" location: C:\\Program Files\HPE\Apache\cong\ssl\SemcServiceCertificate.pem. Looked in that directory and that file is in fact missing. 

Could this file have anything to do with the failed upgrade of the management console? 

0 Kudos
Reply
6 REPLIES 6
ArunKKR
HPE Pro

тАО02-19-2021 12:17 AM

тАО02-19-2021 12:17 AM

Solution

Re: HPE StoreEasy 1660

HI,

 

Have you tried uninstalling SEMC version 1.2.2 , restarting the server and installing latest version after downloading it from below web link?

 

https://support.hpe.com/hpsc/swd/public/detail?swItemId=MTX_4c340aa5ac3c44cc80ec445598

 

I have seen update failure while trying to use the update option with in SEMC.

 

The file SemcServiceCertificate.pem is indeed present in the location listed below in one of the servers I checked.

 

C:\Program Files\HPE\Apache24\conf\ssl

 

My guess is this is an auto created file during the installation and should not cause update failure.

 

 



I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
Reply
ArunKKR
HPE Pro

тАО02-22-2021 04:55 AM

тАО02-22-2021 04:55 AM

Re: HPE StoreEasy 1660

Hi,

 

May I know whether reinstallation helped?



I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
0 Kudos
Reply
Chiefbibb
Established Member

тАО02-22-2021 08:40 AM

тАО02-22-2021 08:40 AM

Re: HPE StoreEasy 1660

Hi,

I unistalled the version 1.2.2.66 management console as you sugested, rebooted the server. I downloaded the install file version 1.2.6.25 you provided and ran the installation, Same issue, The installation failed.

I reinstalled the 1.2.2.66 version with no issuses. After the install completed I logged into the Management console with no issues. I then tried again to install the version 1.2.6.25, this time it worked great. Not sure why, but looks like removing and re-installing the old version and then upgrading to 1.2.6.25 worked. Thank you for your assistance. 

Another Question, How to upgrade the Apache web server? The Apache "http.exe" file is getting tagged by our ACAS vulnerability scanner as a critical upgrade. The ACAS scanner recomends to upgrade Apache from 2.4.39.0 to 2.4.46. 

Thank you,

Mike

0 Kudos
Reply
ArunKKR
HPE Pro

тАО02-23-2021 03:43 AM

тАО02-23-2021 03:43 AM

Re: HPE StoreEasy 1660

Hi,

 

I dont see storeasy servers as impacted by the last Apache vulnerability that I could find on HPE security bulletins page: 

 

https://www.hpe.com/us/en/services/security-vulnerability.html

 

https://techhub.hpe.com/eginfolib/securityalerts/Struts-CVE-2018-11776/Struts-CVE-2018-11776.html

 

All the latest firmware/driver updates for the server could be installed using SPP disk.

 

Latest SPP download link:

 

https://support.hpe.com/hpsc/swd/public/detail?swItemId=MTX_03b559aa36b84e2b9d345692cb#tab-history

 

However, I dont see apache in the list of updates as part of SPP

 

Probably you could try using update from Apache web site if its indeed critical:

 

https://downloads.apache.org/httpd/Announcement2.4.html

 



I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
Reply
Chiefbibb
Established Member

тАО02-23-2021 07:02 AM

тАО02-23-2021 07:02 AM

Re: HPE StoreEasy 1660

I downloaded the Apache install and replaced the apache httpd.exe file, We rescanned with ACAS and now good to go.

FYI, Here is the link to the tenable website that discussed the Apache httpd.exe vulnerability.

https://www.tenable.com/plugins/nessus/139574

Thank you for your assistance,

Mike

 

0 Kudos
Reply
ArunKKR
HPE Pro

тАО02-23-2021 09:14 AM

тАО02-23-2021 09:14 AM

Re: HPE StoreEasy 1660

Hi Mike,

 

I had an internal check and we should not be ideally using updates from external sites.

The future release of SEMC 1.3.1 should come along with newer version Apache.

 



I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.