跳转到主内容
NetApp Response to Russia-Ukraine Cyber Threat
In response to the recent rise in cyber threat due to the Russian-Ukraine crisis, NetApp is actively monitoring the global security intelligence and updating our cybersecurity measures. We follow U.S. Federal Government guidance and remain on high alert. Customers are encouraged to monitor the Cybersecurity and Infrastructure Security (CISA) website for new information as it develops and remain on high alert.

我在 ONTAP 中的 AutoSupport 证书过期后会发生什么情况?

Views:
65
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

适用于

  • ONTAP 9
  • 集群模式 Data ONTAP 8
  • Data ONTAP 8 7-模式
  • AutoSupport

解答

EMS 消息 mgmtgwd.certificate.expiring: A digital certificate with Fully Qualified Domain Name (FQDN) AddTrustExternalCARoot, Serial Number 01, Certificate Authority 'AddTrust External CA Root' and type server-ca for Vserver (vserver) will expire in the next (--) day(s).

  • 什么也不会发生。您将继续使用 HTTPS 发送 AutoSupport, 并继续通过 support.netapp.com 进行身份验证
  • NetApp 使用 ONTAP Certificate Truststore 捆绑包中包含的现有未过期根 CA 续订了 support.netapp.com X.509 服务器证书
  • 无需进一步操作

 

  • 证书即将过期

cluster1::> security certificate show -common-name Ad*
Vserver    Serial Number   Certificate Name             Type
---------- --------------- ---------------------------- ------------
cluster1   01              AddTrustExternalCARoot      server-ca
    Certificate Authority: AddTrust External CA Root
          Expiration Date: Sat May 30 10:48:38 2020

 

  • 新签名证书(在信任库包中预先存在)

cluster1::*> security certificate show -vserver cluster1 -common-name AAACertificateServices
Vserver    Serial Number   Common Name                            Type
---------- --------------- -------------------------------------- ------------
cluster1
           01              AAACertificateServices                 server-ca
    Certificate Authority: AAA Certificate Services
          Expiration Date: Sun Dec 31 18:59:59 2028

 

其他信息

 

Scan to view the article on your device