跳转到主内容

AIQUM 集群获取失败,并显示"trustAnchors 参数必须为非空"

  1. 最后更新
  2. 另存为PDF
Views:
18
Visibility:
Public
Votes:
0
Category:
active-iq-unified-manager
Specialty:
om
Last Updated:

适用于

  • Active IQ Unified Manager (AIQUM) 9.13P1 及更高版本,(RHEL)

问题

在成功建立到 AU 的 TCP+TLS 连接后,集群获取/发现会立即失败。  /var/log/ocie/au.log 显示,在每次轮询尝试时:
java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty
sun.security.validator.PKIXValidator ... PKIX path building failed
javax.net.ssl.SSLHandshakeException ... at https://localhost:443
keytool -list针对 AU truststore 列出了预期的 CA、集群和客户端条目,JAVA_HOME指向有效的 JDK,并且 /etc/pki/java/cacerts对 jboss 用户可读。重新颁发集群证书、重新导入 CA 链以及在 AIQUM MySQL 表中禁用 mTLS 都无法解决该故障。

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.