Initial cluster discovery fails in AIQUM due to permission issue in mTLS keystore file
Applies to
- ActiveIQ Unified Manager (AIQUM)9.12+
- Redhat Linux (RHEL) fresh installation
Issue
- First initial cluster discovery after addition fails in AIQUM 9.12 RHEL
/var/log/ocum/ocumserver.log
:
[oncommand] [org.springframework.jms.listener.DefaultMessageListenerContainer#0-1] [com.netapp.ipc.jms.OCIE_Events] OCIE JMS notification message received: {WarningCount=0, DatasourceName=<cluster_name/IP>, DatasourceID=3, Error0_ClusterManagementIP=<cluster_name/IP>, PackageName=netappfoundation, TotalReportTime=-1, PollStartTime=1686142156474, ErrorCount=1, Success=false, DurationTime=278, Error0_Message=/opt/netapp/essentials/jboss/server/onaro/cert/aiqum_mtls_<cluster_name/IP>.keystore (Permission denied), TotalZAPITime=-1, NotificationType=PACKAGE_COMPLETED, Error0_Type=NETWORK_ACCESS_FAILURE, UpdateTime=1686142157087, Error0_Port=443, MessageType=PACKAGE_NOTIFICATION, Error0_Zapi=null}
aiqum_mtls_<cluster_name/IP>
mTLS certificate is present insideserver.keystore
while checking via keytool list:
keytool -list -v -keystore "/opt/netapp/essentials/jboss/server/onaro/cert/server.keystore" -storepass <keystore password from /opt/netapp/essentials/conf/server.properties file>