SAN switch marginal status due to known limitation regarding 32 bit time
Applies to
- FCP
- Broadcom G620
- Brocade FOS v8.2.2c
Issue
- Switch reports
Current Switch Policy Status MARGINAL
due to expired certificate - When checking output of
seccertmgmt show -all
no certificates are expired
Switch name:root> seccertmgmt show -all
ssh private key:
Does not Exist
ssh public keys available for users: None
Certificate Files:
-----------------------------------------------------------------------------
Protocol Client CA Server CA SW CSR PVT Key Passphrase
------------------------------------------------------------------------------
FCAP Empty NA Empty Empty Empty Empty
RADIUS Empty Empty Empty Empty Empty NA
LDAP Empty Empty Empty Empty Empty NA
SYSLOG Empty Empty Empty Empty Empty NA
HTTPS NA Empty Exist Expty Exist NA
KAFKA NA Empty NA NA NA NA
ASC NA Empty NA NA NA NA
Swich_Name:root> seccertmgmt show -cert https
Issued To
countryName= US
stateOrProvinceName= California
localityName= San Jose
organizationName= Broacde
organizationalUnitName= ENG
commonName= <IP_Address>
Issued By
countryName= US
stateOrProvinceName= California
localityName= San Jose
organizationName= Brocade
organizationalUnitName= Eng
commonName= <IP_Address>
Period of Validity
Begins On Apr 24 05:36:28 2023 GMT
Expires On Apr 11 05:36:28 2073 GMT
Fingerprints
SHA1 Fingerprint B4: D0:74:01: B1: D4: BD:81:C5: BD:8F: B8:xx:19:FE:8C:xx:xx:xx:30
SHA256 Fingerprint 25:E8:84:43:CC: FA:37: BC:F3: B2:9D:C1: DF:xx:xx:1E:
E4:BF:CE:EF: C7:3D: F5:xx:86:54:77:21:xx:xx:xx:5F
- The raslog may also contain a message detected an expired certificate
Current Switch Policy Status: MARGINAL
Switch Health Report:
======================= Current Switch Policy Status: MARGINAL
Contributing Factors:
--------------------- *EXPIRED_CERTS (MARGINAL).