Skip to main content
NetApp Knowledge Base

What actions to be taken at storage end when certificate gets renewed at server end ?

  1. Last updated
  2. Save as PDF
Views:
50
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
CORE
Last Updated:

Applies to

  • IBM Cloud Object Storage
  • FAS
  • SSL certificate

Answer

Need to disable the certificate validation on the storage end and then proceed with the renewal of certificates on the server end, so that when communication is taking place, no certificate validation happens at the storage end and no impact.

::*> storage aggregate object-store config modify -object-store-name my-store -port 443 -is-certificate-validation-enabled false

Additional Information

Once the renewal of certificates is done on the server side, you can perform the following checks and if all looks fine, then enable the certificate validation.

::*> storage aggregate object-store show
::*> storage aggregate object-store profiler start -node <node_name>
::*> storage aggregate object-store profiler show
::*> storage aggregate object-store config modify -object-store-name my-store -port 443 -is-certificate-validation-enabled true

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.