由于MTLS密钥库文件中的权限问题描述、AIQUM中的初始集群发现失败
适用场景
- ActiveIQ Unified Manager (AIQUM) 9.12及更高版本
- RedHat Linux (RHEL)全新安装
问题描述
- 在AIQUM 9.12 RHEL中、首次执行集群添加后发现失败
/var/log/ocum/ocumserver.log
:
[oncommand] [org.springframework.jms.listener.DefaultMessageListenerContainer#0-1] [com.netapp.ipc.jms.OCIE_Events] OCIE JMS notification message received: {WarningCount=0, DatasourceName=<cluster_name/IP>, DatasourceID=3, Error0_ClusterManagementIP=<cluster_name/IP>, PackageName=netappfoundation, TotalReportTime=-1, PollStartTime=1686142156474, ErrorCount=1, Success=false, DurationTime=278, Error0_Message=/opt/netapp/essentials/jboss/server/onaro/cert/aiqum_mtls_<cluster_name/IP>.keystore (Permission denied), TotalZAPITime=-1, NotificationType=PACKAGE_COMPLETED, Error0_Type=NETWORK_ACCESS_FAILURE, UpdateTime=1686142157087, Error0_Port=443, MessageType=PACKAGE_NOTIFICATION, Error0_Zapi=null}
aiqum_mtls_<cluster_name/IP>
server.keystore
通过keytool列表检查时、MTLS证书位于内部:
keytool -list -v -keystore "/opt/netapp/essentials/jboss/server/onaro/cert/server.keystore" -storepass <keystore password from /opt/netapp/essentials/conf/server.properties file>