ONTAP Discussions

Cannot enable Client Authentication

eladgotfrid1
2,395 Views

When running:

security ssl modify -vserver data1 -client-enabled true

Getting:

Error: command failed: Failed to enable Client Authentication. Reason: There are no 'client_ca' type certificates for vserver 'data1'.

 

I run security ssl modify -vserver data1 -client-enabled false by mistake and now I cannot undo.

 

Any idea?

1 ACCEPTED SOLUTION

TMACMD
2,366 Views

Making the rounds, eh? Reddit and here!

 

Did you mean to enable client or did you really mean server?

When you install or update a Server certificate and delete the original, you need to run the

security ssl modify -vserver data1 -server-enabled true

(you will need other args to complete the command!)

to re-enable the server cert. If you are trying to have NA box access, you may just need the server cert.

 

If you truly need the client cert, then you need to install one then enable the option

View solution in original post

1 REPLY 1

TMACMD
2,367 Views

Making the rounds, eh? Reddit and here!

 

Did you mean to enable client or did you really mean server?

When you install or update a Server certificate and delete the original, you need to run the

security ssl modify -vserver data1 -server-enabled true

(you will need other args to complete the command!)

to re-enable the server cert. If you are trying to have NA box access, you may just need the server cert.

 

If you truly need the client cert, then you need to install one then enable the option

Public