Big news! The community will be moving to a new platform April 21. Read more.
Big news! The community will be moving to a new platform April 21. Read more.
Absent Member.
Absent Member.
357 views

issue self signed certificate for a cluster ressource

Hi,

I want to create a server certificate for a service who is configured to
a cluster resource. I choose in 'Create Server Certificate' iManager 3
and go through the process. I choose the NCP-Server object of the
cluster resource when asked for a server.

All Steps are fine until I click 'finish'. Then I get an 'Server
Certificate (Key Material) Creation Error' (NDS Error -603)

The certificate is visible in eDir but status is 'import'.

Any hints?


OK, I can create a CSR out side of iManager and choose 'Issue
Certificate' in iManager but ...

Bernd


Labels (2)
0 Likes
2 Replies
Knowledge Partner Knowledge Partner
Knowledge Partner

On 08/28/2018 03:53 AM, nntp-user wrote:
>
> I want to create a server certificate for a service who is configured to a
> cluster resource. I choose in 'Create Server Certificate' iManager 3 and
> go through the process. I choose the NCP-Server object of the cluster
> resource when asked for a server.
>
> All Steps are fine until I click 'finish'. Then I get an 'Server
> Certificate (Key Material) Creation Error' (NDS Error -603)


I do not believe you should choose the cluster resource NCP Server object,
as it is not really a server . Choose the real node, and then you can
choose to export/import to other servers in the cluster as needed.

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
0 Likes
Knowledge Partner Knowledge Partner
Knowledge Partner

Apparently I sent that too soon.

I meant to include that this, to me, is similar to time synchronization
checks in eDirectory. Cluster resource servers show as broken (or used to
anyway) for the same reason. They are servers so eDirectory checks them,
but they are not real, so they show as broken, even though the real
cluster nodes are fine in terms of time synchronization.


--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.