Skip to main content
NetApp Knowledge Base

SAN switch marginal status due to known limitation regarding 32 bit time

Views:
2,794
Visibility:
Public
Votes:
5
Category:
fabric-interconnect-and-management-switches
Specialty:
brocade
Last Updated:

Applies to

  • FCP
  • Broadcom G620
  • Brocade FOS v8.2.2c

Issue

  • Switch reports Current Switch Policy Status MARGINAL due to expired certificate
  • When checking output of seccertmgmt show -all  no certificates are expired

Switch name:root> seccertmgmt show -all
ssh private key:
Does not Exist
ssh public keys available for users: None
Certificate Files:
-----------------------------------------------------------------------------
Protocol    Client CA    Server CA     SW      CSR     PVT Key   Passphrase
------------------------------------------------------------------------------
FCAP        Empty        NA            Empty   Empty   Empty     Empty
RADIUS      Empty        Empty         Empty   Empty   Empty     NA
LDAP        Empty        Empty         Empty   Empty   Empty     NA
SYSLOG      Empty        Empty         Empty   Empty   Empty     NA
HTTPS       NA             Empty            Exist   Expty   Exist     NA
KAFKA       NA           Empty         NA        NA       NA        NA
ASC         NA           Empty         NA        NA       NA        NA

Swich_Name:root> seccertmgmt show -cert https
Issued To
    countryName= US
    stateOrProvinceName= California
    localityName= San Jose
    organizationName= Broacde
    organizationalUnitName= ENG
    commonName= <IP_Address>
Issued By
    countryName= US
    stateOrProvinceName= California
    localityName= San Jose
    organizationName= Brocade
    organizationalUnitName= Eng
    commonName= <IP_Address>
Period of Validity
Begins On Apr 24 05:36:28 2023 GMT
Expires On Apr 11 05:36:28 2073 GMT
Fingerprints
SHA1 Fingerprint B4: D0:74:01: B1: D4: BD:81:C5: BD:8F: B8:xx:19:FE:8C:xx:xx:xx:30
SHA256 Fingerprint 25:E8:84:43:CC: FA:37: BC:F3: B2:9D:C1: DF:xx:xx:1E:
E4:BF:CE:EF: C7:3D: F5:xx:86:54:77:21:xx:xx:xx:5F

  • The raslog may also contain a message detected an expired certificate
Example:
Current Switch Policy Status:  MARGINAL
Switch Health Report:
======================= Current Switch Policy Status: MARGINAL
Contributing Factors:
--------------------- *EXPIRED_CERTS (MARGINAL).

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.