2016-09-16 03:49 AM - edited 2016-09-16 04:18 AM
Hi, we have some 8.3.x cDOT clusters added in OCUM, all working fine.
But clusters with version 9 (GA) can't be added.
We get this error:
Cluster add failed. Failed to fetch the HTTPS certificate from *ontap9system*. Enter a valid Hostname or Port.
Certificates are not expired, credentials work fine.
Quick update: It works with HTTP (Port 80) but of course we have security concerns so we need to use HTTPS like on the others.
2016-09-17 07:30 AM
here you go:
External Web Services: true
HTTP Protocol Port: 80
HTTPS Protocol Port: 443
HTTP Enabled: true
Yes it tried both IP and Hostname, it only works with non-secure HTTP...
2016-09-19 02:47 AM - edited 2016-09-19 02:48 AM
this may be caused because the hostname listed in the certificate does not match the actual hostname / FQDN of the cluster.
This may happen in case DNS settings or cluster name are changed post cluster setup.
I also wouldn't exclude the cluster setup logic to have a flaw so that hostname/FQDN of the cluster and the certificate don't match.
Please try to re-create the SSL certificate according to this KB article:
Although the article is written explicitely for ONTAP 8.1 and 8.2/8.3, please follow those steps outlined for 8.2/8.3 for ONTAP 9. They should be identical.
Then try adding the cluster to OCUM.
Kind regards, Niels
If this post resolved your issue, please help others by selecting ACCEPT AS SOLUTION or adding a KUDO or both.
2016-09-20 12:17 PM - edited 2016-09-20 12:18 PM
There was no DNS / Name change.
Brand new cluster setup, no changes there.
New cert didn't help, I have opend a ticket. Lets see...
2016-09-21 04:48 AM - edited 2016-09-21 10:50 AM
so the fix / workaround is to modify the hosts file of both OCUM and OCPM by adding the ontap 9 systems.
Although ping worked fine without the host entries, technician said its a bug.