Expired AIQUM client certificate deletion failed in ONTAP with serial number is in use by the rest-api EMS destination
- Views:
- 522
- Visibility:
- Public
- Votes:
- 0
- Category:
- active-iq-unified-manager
- Specialty:
- om
- Last Updated:
- 12/6/2024, 5:23:01 PM
Applies to
- ActiveIQ Unified Manager (AIQUM) 9.x
- AIQUM Client Certificate
- ONTAP 9.x
Issue
- ONTAP reports
ERROR mgmtgwd.certificate.expired
security certificate show -type client
indicates that the client certificate installed by AIQUM for EMS subscription has expired- AIQUM Client certificate is renewed
- ONTAP reflects both the new and expired certificates with different serial numbers with
security certificate show -type client
- However, deletion of old expired certificate in ONTAP fails with:
The certificate could not be removed due to the following conflicts: The certificate issued by "xxxxxxxxxxxxxxx" with serial number "xxxxxxx" is in use by the rest-api EMS destination "xxxxxxxxxxx" and cannot be removed.