Skip to main content

NetApp wins prestigious Coveo Relevance Pinnacle Award. Learn more!

INSIGHT Japan :2023年 1月25日(水)ANAインターコンチネンタルホテル開催 へ参加・申込を行う

NetApp Knowledge Base

HTTPS/SSL connections are failing after reboot in ONTAP

Views:
669
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

Applies to

  • ONTAP 9
  • HTTPS/SSL
    • Cluster Peering
    • AutoSupports
    • System Manager

Issue

  • After a node reboot, services using HTTPS/SSL fail to connect.
  • Failures can be seen in (but are not limited to):
    • Autosupport
    • Cluster Peering
    • System Manager
  • SSL error messages seen in various logs and command outputs:

 

"autosupport check show-details" command:

Cluster::> autosupport check show-details
Node: cluster-01
Category: http-https
          Component: http-put-destination
             Status: failed
             Detail: HTTP/S PUT connectivity check failed for destination:
                     https://support.netapp.com/put/AsupPut/. Error: SSL
                     connect error
          Component: http-post-destination
             Status: failed
             Detail: HTTP/S POST connectivity check failed for destination:
                     https://support.netapp.com/asupprod/post/1.0/postAsup.
                     Error: SSL connect error

Notifyd log:

[kern_notifyd:info:1530] (category: 1530:0:deliver) (emittime: 8/31/2021 01:44:52) (message: TLSv1.2 (OUT), TLS header, Certificate Status (22):)
[kern_notifyd:info:1530] (category: 1530:0:deliver) (emittime: 8/31/2021 01:44:52) (message: TLSv1.2 (OUT), TLS handshake, Client hello (1):)
[kern_notifyd:info:1530] (category: 1530:0:deliver) (emittime: 8/31/2021 01:44:52) (message: error:0E065068:configuration file routines:STR_COPY:variable has no value)
[kern_notifyd:info:1530] (category: 1530:0:deliver) (emittime: 8/31/2021 01:44:52) (message: Marked for [closure]: Failed HTTPS connection)
[kern_notifyd:info:1530] (category: 1530:0:deliver) (emittime: 8/31/2021 01:44:52) (message: multi_done)
00000015.0062e0fa 001c17d5 Tue Aug 31 2021 01:44:53 -04:00 [kern_notifyd:info:1530] (category: 1530:0:deliver) (emittime: 8/31/2021 01:44:52) (message: The cache now contains 0 members)
[kern_notifyd:info:1530] (category: 1530:0:deliver) (emittime: 8/31/2021 01:44:52) (message: Closing connection 0)

APACHE-ERROR log:

[ssl:emerg] [pid 67509:tid 34389163776] AH02562: Failed to configure certificate 127.0.0.1:0 (with chain), check /mroot/etc/vserver_0000000000/certificates/ssl/server/UUID/server.crt
[ssl:emerg] [pid 67509:tid 34389163776] SSL Library Error: error:0E065068:configuration file routines:STR_COPY:variable has no value (line 12)
{ssl:error] [pid 67509:tid 34389163776] [client 10.0.0.5:30001] [vserver 0000000000] Failed to initialize SSL context
[ssl:notice] [pid 67509:tid 34389171456] [client 10.0.0.5:30001] [vserver 0000000000] No server certificate chain is configured for this vserver
[ssl:notice] [pid 67509:tid 34389171456] [client 10.0.0.5:30001] [vserver 0000000000] Certificate-based client authentication is not configured for this vserver

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

Scan to view the article on your device

 

  • Was this article helpful?