Skip to main content
NetApp Knowledge Base

User unable to access S3 bucket with certificate validation

  1. Last updated
  2. Save as PDF
Views:
262
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
CORE
Last Updated:

Applies to

  • ONTAP
  • ONTAP S3 Bucket

Issue

  • Getting the below error while accessing the S3 bucket:
Could not connect to storage default. Error:get "https://s3store.abc.xyz/openshiftint...try/?location=": tls: failed to verify certificate: x509: certificate signed by unknown authority
  • Also,
Error: Certificate is not valid
  • From the event logs, we can see that the TLS connections failed due to Bad Certificate

     Mon Jul 29 12:59:19 +0530 [Node-01: ktlsd: ktls.failed:notice]: "The TLS connections have failed several times with remote host '172.17.204.40' in IPspace '4294967295', for which the latest reason given is: OpenSSL: error:0A000412:SSL routines::sslv3 alert bad certificate."
     

  • From the messages section, the handshake fails with Bad Certificate
     
    Mon Jul 29 2024 12:59:19 +05:30 [Jul 29 12:59:19]: ERR: ktlsd: abortHandshake:src/tables/net_ssl_handshake.cc:2073 OpenSSL call failed: OpenSSL: error:0A000412:SSL routines::sslv3 alert bad certificate
    Mon Jul 29 2024 13:01:55 +05:30 [Jul 29 13:01:55]: ERR: security_shared::filesystem::ScopedFlock: [createDirectoriesAndOpenFile]:166: Failed to create directories: Invalid argument
    Mon Jul 29 2024 13:01:55 +05:30 [Jul 29 13:01:55]: ERR: libsslmgnt::filesystem::AbstractPemBundle: [getData]:42: Unable to acquire lock in

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.