无法访问新集群节点上的 HTTPS 服务
适用场景
- ONTAP 9
- 新集群节点
- 集群扩展
- HTTPS 管理
问题描述
- 在以下情况下,可以对节点和集群管理 LIF 进行 HTTPS 访问 托管在集群中以前存在的节点上
- 无法通过 HTTPS 访问上的节点和集群管理 新节点
- 无法访问 SPI
- 浏览器显示:
ERR_CONNECTION_CLOSED
- 卷曲错误:
Closing connection 0
curl: (35) OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to x.x.x.x:443
- apache-error.gz
[Tue Feb 16 15:51:13.260247 2021 +0000] [ssl:notice] [pid 8817:tid 34385761792] [client x.x.x.x:52234] [vserver 4294967295] No server certificate chain is configured for this vserver
[Tue Feb 16 15:51:13.260292 2021 +0000] [ssl:notice] [pid 8817:tid 34385761792] [client x.x.x.x:52234] [vserver 4294967295] Certificate-based client authentication is not configured for this vserver
[Tue Feb 16 15:51:13.260608 2021 +0000] [ssl:emerg] [pid 8817:tid 34385761792] AH02562: Failed to configure certificate 127.0.0.1:0 (with chain), check /mroot/etc/vserver_4294967295/certificates/ssl/server/147+XXXXXXXXXXXX+cluster/server.crt
[Tue Feb 16 15:51:13.260624 2021 +0000] [ssl:emerg] [pid 8817:tid 34385761792] SSL Library Error: error:02001002:system library:fopen:No such file or directory (fopen('/mroot/etc/vserver_4294967295/certificates/ssl/server/147+XXXXXXXXXXXX+cluster/server.crt','r'))
[Tue Feb 16 15:51:13.260638 2021 +0000] [ssl:emerg] [pid 8817:tid 34385761792] SSL Library Error: error:20074002:BIO routines:FILE_CTRL:system lib
[Tue Feb 16 15:51:13.260651 2021 +0000] [ssl:emerg] [pid 8817:tid 34385761792] SSL Library Error: error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system lib
[Tue Feb 16 15:51:13.260654 2021 +0000] [ssl:error] [pid 8817:tid 34385761792] [client x.x.x.x:52234] [vserver 4294967295] Failed to initialize SSL context