Microsoft Virtualization Discussions

cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Microsoft Virtualization Discussions

Ask a Question

"The expression is missing a value" with Set-NcSecuritySsl/Get-NcSecuritySsl and ONTAP 9.x

mcgue
NetApp
‎2017-01-13 02:03 PM
10,610 Views

I have a script that I have used these two cmdlets without issue on any 8.2/8.3 flavor I've tested.  Now testing against 9.x I get this error with other of these cmdlets.  I was able to resolve for the "Get" by changing the -vserver parameter to using -vservercontext instead.  Why would the new OS version require that difference?  Regarding the "Set" cmdlet, regardless of passing values for every parameter accepted by that cmdlet I still get this error and now way around it.  Any ideas on the difference in ONTAP 9 that might be causing this?  I've tested against multiple 9.0x and 9.1x systems and getting the same results.  

0 Kudos
View By:
1 ACCEPTED SOLUTION
mirko has accepted the solution

asulliva
NetApp
‎2017-02-03 11:10 AM
10,156 Views

Hello @mcgue,

 

This appears to be a bug in the PSTK.  I'm able to do modifications by executing ZAPI directly from PowerShell...for example:

 

Invoke-NcSystemApi -VserverContext $svmName "<security-ssl-modify><client-authentication-enabled>false</client-authentication-enabled></security-ssl-modify>"

As a workaround, it should be relatively straightforwad to create a custom PowerShell function to wrap creating the ZAPI request for this.

 

I'll create a new bug for this issue.  I'm happy to pay you in NetApp stickers (if you're not already innundated) for finding it : )

 

Andrew

If this post resolved your issue, please help others by selecting ACCEPT AS SOLUTION or adding a KUDO.

View solution in original post

9 REPLIES 9

Marius
NetApp
‎2017-02-03 01:08 AM
10,177 Views

Hi,

 

do you have any update to this problem? I have the same one with the set-NcSecuritySsl Command in Ontap 9.1.

 

Regards,

Marius

0 Kudos
mirko has accepted the solution

asulliva
NetApp
‎2017-02-03 11:10 AM
10,157 Views

Hello @mcgue,

 

This appears to be a bug in the PSTK.  I'm able to do modifications by executing ZAPI directly from PowerShell...for example:

 

Invoke-NcSystemApi -VserverContext $svmName "<security-ssl-modify><client-authentication-enabled>false</client-authentication-enabled></security-ssl-modify>"

As a workaround, it should be relatively straightforwad to create a custom PowerShell function to wrap creating the ZAPI request for this.

 

I'll create a new bug for this issue.  I'm happy to pay you in NetApp stickers (if you're not already innundated) for finding it : )

 

Andrew

If this post resolved your issue, please help others by selecting ACCEPT AS SOLUTION or adding a KUDO.

mcgue
NetApp
‎2017-02-04 11:01 AM
In response to asulliva
10,129 Views

Thanks Andrew!  I appreciate the syntax as well for the invoke API cmdlet as I hadn't used that yet.  I'll craft that as a workaround.  Good stuff!

0 Kudos

hland
NetApp
‎2017-02-28 06:03 AM
In response to asulliva
9,992 Views

i Andrew,

 

did you ever found the time to file the bug (as I couldn't find it)? If not, I'll go ahead and do it so this can be fixed. Just ran into this as well...

 

Thanks

 

Hendrik

0 Kudos

mirko
NetApp
‎2017-03-08 03:05 AM
In response to hland
9,925 Views

$Request = @"
<security-ssl-modify>
<certificate-authority>$CA</certificate-authority>
<certificate-serial-number>$Serial</certificate-serial-number>
<common-name>$CN</common-name>
<server-authentication-enabled>true</server-authentication-enabled>
<vserver>$VserverName</vserver>
</security-ssl-modify>
"@
Invoke-NcSystemApi -VserverContext $VserverName -Request $Request

 

This worked for me

 

+1 to file a burt

Girton
NetApp
‎2017-09-05 12:29 PM
In response to mirko
9,157 Views

Mirko,

 

Thank you for your script code.  It was very useful.

 

Dan

0 Kudos

mcgue
NetApp
‎2017-03-08 04:58 AM
9,913 Views

Thanks all for the replies - I updated the script here too:

 

http://community.netapp.com/t5/Microsoft-Cloud-and-Virtualization-Discussions/Risk-Resolver-Certificate-Renew-Recreate/m-p/128084

0 Kudos

ronaldmajor
‎2017-10-06 05:31 AM
8,750 Views

Has the bug with Set-NcSecuritySsl been fixed? I still see the issue in PSTK 4.4.

The workaround works nicely though. Thanks for that.

 

0 Kudos

asulliva
NetApp
‎2017-10-09 08:22 AM
In response to ronaldmajor
8,685 Views

Hello @ronaldmajor,

 

The bug id is 1074255, it appears to still be open.

 

Hope that helps.

 

Andrew

If this post resolved your issue, please help others by selecting ACCEPT AS SOLUTION or adding a KUDO.
0 Kudos
Announcements
All Community Forums
Public