mgmtgwd.certificate.expired: A digital certificate with Fully Qualified Domain Name (FQDN) snap, Ser

Vipul_Nagar

Hi Team

I'm getting below event on my OnTap which is running on 9.15.*.*

"mgmtgwd.certificate.expired: A digital certificate with Fuly Qualified Domain Name (FQDN) snap, Serial Number 173B18A666E8BCBF, Certificate Authority 'snap' and type server for Vserver backup_svm has expired."

As I know how to renew by my concern while renewing its giving below popup so just want to confirm if i simply renew it will

it impact my OnTap

Renew client/server certificate

The existing certificate won't be deleted, but a copy of the certificate will be created. You should manually remap applications associated with the old certificate to be associated with the new certificate.

Existing certificate name snap_173B18A666E8BCBF

Please suggest

chamfer

Hi @Vipul_Nagar,

Just renewing the self-signed certificate does essentially nothing if you don't replace the old certificate on the SVM with the new one. "You should manually remap applications associated with the old certificate to be associated with the new certificate."

You need to understand What is using the certificate on your SVM named "backup_svm"? If you have an application that is expecting a certificate from a specific CA or where you need to generate, export from ONTAP, and import to your backup product.

Once you have generated your self-signed certificate you need to apply it. CLI command reference is here security ssl modify

The commands would be something like:

ssl modify -vserver backup_svm -ca <CA> -serial <SERIAL> -common-name <common-name>

mgmtgwd.certificate.expired: A digital certificate with Fully Qualified Domain Name (FQDN) snap, Ser

Renew client/server certificate

New video on NetApp KB TV