New Ranks & Badges For The Community!
Notice something different? The ranks and associated badges have gone "Star Fleet". See what they all mean HERE
Highlighted
Cadet 2nd Class Cadet 2nd Class
Cadet 2nd Class
1650 views

OMW certificate server issue

I have removed all the certificates from omw (agent+trusted+server certificates) as my certificate server is giving trouble when i click on "Certificate Requests" in the console tree:

(OV-CSI 485) Error: The CSA is not able to perfrom the selected operation as the certificate server is not available!

 

Now it looks like: ovcert -list

+---------------------------------------------------------+
| Keystore Content                                        |
+---------------------------------------------------------+
| Certificates:                                           |
+---------------------------------------------------------+
| Trusted Certificates:                                   |
+---------------------------------------------------------+

+---------------------------------------------------------+
| Keystore Content (OVRG: server)                         |
+---------------------------------------------------------+
| Certificates:                                           |
+---------------------------------------------------------+
| Trusted Certificates:                                   |
+---------------------------------------------------------+

 

Kindly help what to do next.

Labels (1)
Tags (1)
0 Likes
11 Replies
Highlighted
Fleet Admiral Fleet Admiral
Fleet Admiral

Why did you remove the certificates on the mgmt server?

 

Do you have any backup?

- Vidyasagar Machani -

Tell me and I forget. Teach me and I remember. Involve me and I learn. -- Benjamin Franklin
0 Likes
Highlighted
Cadet 2nd Class Cadet 2nd Class
Cadet 2nd Class

No I dont have any backup. Is there any way I can generate the same again. Like I did: ovcm -newcacert and it gave me this:

+---------------------------------------------------------+
| Trusted Certificates:                                   |
|     CA_3f973d92-a9e5-7573-1129-a1c6f9d0225f (*)         |
+---------------------------------------------------------+

0 Likes
Highlighted
Absent Member.. Absent Member..
Absent Member..

Hello,

Which OS type and version of OMW?
One possible reason is that bbc communication is not properly configured on the OMW server
0 Likes
Highlighted
Fleet Admiral Fleet Admiral
Fleet Admiral

Follow the below steps (Execute all of the below on the OMW mgmt Server) :

 

(1) ovcm -newcert (you have executed this already, so skip this)

 

(2) ovcert -exporttrusted -file c:/tmp/cert1 -ovrg server

 

(3)  ovcert -importtrusted -file c:/tmp/cert1

 

(4) Make the note of the output of the following command : 

 

      ovcoreid –ovrg server

 

(5) ovcm -issue -file c:/tmp/cert2 -name OMW_Server_Hostname -coreid <Output of step4>

 

(6) ovcert -importcert -file c:/tmp/cert2 -ovrg server ( Once entered it will ask for the password, enter the password which you gave in Step5)

 

(7) Make the note of the output of the following command : 

 

      ovcoreid

 

(8) ovcm -issue -file c:/tmp/cert3 -name OMW_Server_Hostname -coreid <Output of step7>

 

(9) ovcert -importcert -file c:/tmp/cert3 ( Once entered it will ask for the password, enter the password which you gave in Step8)

- Vidyasagar Machani -

Tell me and I forget. Teach me and I remember. Involve me and I learn. -- Benjamin Franklin
Cadet 2nd Class Cadet 2nd Class
Cadet 2nd Class

Step 5 is giving error as:

 

C:\Users\hp-ove-deleg-user>ovcm -issue -file c:\agentcert -name <hostname> -coreid 3f973d92-a9e5-7573-1129-a1c6f9d0225f
       * Enter password: *********
       * Retype password: *********
ERROR:   Unknown Error.

C:\Users\hp-ove-deleg-user>

0 Likes
Highlighted
Fleet Admiral Fleet Admiral
Fleet Admiral

Change the directory ( instead of c use d or e drive ) and run the command prompt as administrator.
- Vidyasagar Machani -

Tell me and I forget. Teach me and I remember. Involve me and I learn. -- Benjamin Franklin
0 Likes
Highlighted
Cadet 2nd Class Cadet 2nd Class
Cadet 2nd Class

Running cmd as admin, changed from c:\ to d:\, still same error:

 

d:\>ovcm -issue -file d:\cert -name <hostname>-coreid 3f973d92-a9e5-7573-1129-a1c6f9d0225f
       * Enter password: *********
       * Retype password: *********
ERROR:   Unknown Error.

d:\>

 

I believe issue is with the certificate server, thats why its not able to issue certificates.

0 Likes
Highlighted
Fleet Admiral Fleet Admiral
Fleet Admiral

check if ovcs process is running.

ovc -status

if not start and then re-run
- Vidyasagar Machani -

Tell me and I forget. Teach me and I remember. Involve me and I learn. -- Benjamin Franklin
0 Likes
Highlighted
Cadet 2nd Class Cadet 2nd Class
Cadet 2nd Class

did this already, but no luck.

0 Likes
Highlighted
Fleet Admiral Fleet Admiral
Fleet Admiral

Are you running with the latest patch??

http://h30499.www3.hp.com/t5/Systems-Management-OpenView-OP/ovcm-command-on-OMW9-ERROR-Unknown-Error/td-p/6324311
- Vidyasagar Machani -

Tell me and I forget. Teach me and I remember. Involve me and I learn. -- Benjamin Franklin
0 Likes
Highlighted
Fleet Admiral Fleet Admiral
Fleet Admiral

Also give a try of the ovowcsacm command 

- Vidyasagar Machani -

Tell me and I forget. Teach me and I remember. Involve me and I learn. -- Benjamin Franklin
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.