NetApp Community Update
This site will enter Read Only mode on July 23 as we prepare to move to a new platform. You will still be able to view content, but posting and replying will be temporarily disabled.
We're excited to launch our new Community experience on July 30 and more information will follow soon.
Stay connected during the transition - Join our Discord community today.

Software Development Kit (SDK) and API Discussions

Certificate Based Authentication using NetApp SDK Python

NETAPP_USER_NAME
3,693 Views

Getting the following error messages when attempting CBA to ONTAP 8.3.1 using Python SDK 5.2.2  (realize this is down level).  We have a signed CA cert and trust chain installed on the NetApp but it appears to be flagging it as a self-signed cert.

 

From host:

# python  apitest.py -C CERTFILE.pem <HOSTNAME> "system-node-get"

 

OUTPUT:  <results status="failed" reason="[Errno 1]] _ssl.c:### error: ########:SSL routines: SSL3_READ_BYTES:tlsv1 alert unknown ca" errno="13001"></results>

 

From NetApp apache_error.log:

[ssl:error] Certificate Verification: Error (19): self signed certificate in certificate chain [INFO FOR ROOT CA]

 

Any ideas why this is treating my CA issued cert as self signed?

 

Thanks,

Bill

1 REPLY 1

Nick-Elliott
2,719 Views

are you including the ca certs?

 

    def set_ca_certs(self, ca_file):
        """ Specifies the certificates of the Certificate Authorities (CAs) that are 
        trusted by this application and that will be used to verify the server certificate.
        """

        self.ca_file = ca_file
Public