Skip to main content
NetApp Knowledge Base

Qualys SSL vulnerability scan reports certificate issue

  1. Last updated
  2. Save as PDF
Views:
1,381
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

Applies to

  • ONTAP 9
  • Qualys security scan

Issue

Qualys scan reports:
 
  • An SSL Certificate associates an entity (person, organization, host, etc.) with a Public Key. In an SSL connection, the client authenticates the remote server using the server's Certificate and extracts the Public Key in the Certificate to establish the secure connection.
  • The basic Constraints section of the certificate may specify if it is a Certificate Authority (CA) certificate.
  • Also, the keyUsage field in the X509v3 extensions section of the certificate, if present, may restrict the usage of the certificate.
  • In general, a server public key should not be used for Certificate or CRL signing, a client or CA certificate should be not used as a server certificate.
Remediation notes
  • Please install a server certificate with correct usage

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.