Unable to replace the APH-AR & APH-TN certificate manually
Article ID: 429021
Updated On:
Products
VMware NSX
Issue/Introduction
- The following error may be seen within the NSX Manager UI when manually replacing the expired certificates.
- While reviewing the environment’s certificates, you may see that several certificates are approaching their expiration dates or expired.
Environment
- VMware NSX-T 4.1.X
Cause
- This error typically occurs when the Common Name (CN) string contains characters that the NSX parser or the underlying OpenSSL library finds "illegal," or when the format does not follow X.500 standards
- If the values given is incorrect or followed any special string then the error may occur. Ensure the string follows the
CN=Value,OU=Value,O=Value,L=Value,S=Value,C=Valueformat precisely.
Resolution
- In order to resolve the above error message you can leverage the Using Certificate Analyzer, Results and Recovery (CARR) Script to fix certificate related issues in NSX KB. After this the above error message should be resolved.
- If persists please open a Support Request with Broadcom and attach the NSX Manager Log bundles.
Feedback
Yes
No
Powered by
