OMW certificate server issue

I have removed all the certificates from omw (agent trusted server certificates) as my certificate server is giving trouble when i click on "Certificate Requests" in the console tree:

(OV-CSI 485) Error: The CSA is not able to perfrom the selected operation as the certificate server is not available!

 

Now it looks like: ovcert -list

---------------------------------------------------------
| Keystore Content                                        |
---------------------------------------------------------
| Certificates:                                           |
---------------------------------------------------------
| Trusted Certificates:                                   |
---------------------------------------------------------

---------------------------------------------------------
| Keystore Content (OVRG: server)                         |
---------------------------------------------------------
| Certificates:                                           |
---------------------------------------------------------
| Trusted Certificates:                                   |
---------------------------------------------------------

 

Kindly help what to do next.

Parents
  • Why did you remove the certificates on the mgmt server?

     

    Do you have any backup?

  • No I dont have any backup. Is there any way I can generate the same again. Like I did: ovcm -newcacert and it gave me this:

    ---------------------------------------------------------
    | Trusted Certificates:                                   |
    |     CA_3f973d92-a9e5-7573-1129-a1c6f9d0225f (*)         |
    ---------------------------------------------------------

  • Follow the below steps (Execute all of the below on the OMW mgmt Server) :

     

    (1) ovcm -newcert (you have executed this already, so skip this)

     

    (2) ovcert -exporttrusted -file c:/tmp/cert1 -ovrg server

     

    (3)  ovcert -importtrusted -file c:/tmp/cert1

     

    (4) Make the note of the output of the following command : 

     

          ovcoreid –ovrg server

     

    (5) ovcm -issue -file c:/tmp/cert2 -name OMW_Server_Hostname -coreid <Output of step4>

     

    (6) ovcert -importcert -file c:/tmp/cert2 -ovrg server ( Once entered it will ask for the password, enter the password which you gave in Step5)

     

    (7) Make the note of the output of the following command : 

     

          ovcoreid

     

    (8) ovcm -issue -file c:/tmp/cert3 -name OMW_Server_Hostname -coreid <Output of step7>

     

    (9) ovcert -importcert -file c:/tmp/cert3 ( Once entered it will ask for the password, enter the password which you gave in Step8)

  • Step 5 is giving error as:

     

    C:\Users\hp-ove-deleg-user>ovcm -issue -file c:\agentcert -name <hostname> -coreid 3f973d92-a9e5-7573-1129-a1c6f9d0225f
           * Enter password: *********
           * Retype password: *********
    ERROR:   Unknown Error.

    C:\Users\hp-ove-deleg-user>

  • Change the directory ( instead of c use d or e drive ) and run the command prompt as administrator.
  • Running cmd as admin, changed from c:\ to d:\, still same error:

     

    d:\>ovcm -issue -file d:\cert -name <hostname>-coreid 3f973d92-a9e5-7573-1129-a1c6f9d0225f
           * Enter password: *********
           * Retype password: *********
    ERROR:   Unknown Error.

    d:\>

     

    I believe issue is with the certificate server, thats why its not able to issue certificates.

Reply
  • Running cmd as admin, changed from c:\ to d:\, still same error:

     

    d:\>ovcm -issue -file d:\cert -name <hostname>-coreid 3f973d92-a9e5-7573-1129-a1c6f9d0225f
           * Enter password: *********
           * Retype password: *********
    ERROR:   Unknown Error.

    d:\>

     

    I believe issue is with the certificate server, thats why its not able to issue certificates.

Children