Adding a cluster to AIQUM 9.16P2 fails when SAML is enabled
Applies to
- Active IQ Unified Manager (AIQUM) 9.16+
- ONTAP cluster with SAML enabled
Issue
- Adding a cluster to AIQUM using a local admin account fails with an exception if SAML is enabled on the cluster.
- Error seen in ocumserver.log:
2025-07-24 17:14:57,970 ERROR [bandit] [default task-8] [c.n.d.c.l.s.cert.CertGenerator] Error fetching timezone for the cluster
2025-07-24 17:14:57,973 ERROR [bandit] [default task-8] [c.n.d.o.o.OntapMutualAuthenticationManager] Exception installing Mutual TLS certificate on ONTAP
org.bouncycastle.operator.OperatorCreationException: Error fetching the cluster timezone for certificate creation
at deployment.dfm-app.war//com.netapp.dfm.common.lite.security.cert.CertGenerator.generateSelfSignedCertificate(CertGenerator.java:414)
at deployment.dfm-app.war//com.netapp.dfm.ontap.outbound.OntapMutualAuthenticationManager.generateCertificate(OntapMutualAuthenticationManager.java:201)
at deployment.dfm-app.war//com.netapp.dfm.ontap.outbound.OntapMutualAuthenticationManager.enableMutualAuthentication(OntapMutualAuthenticationManager.java:82)