由于证书已过期, SAN 交换机处于边际状态
适用场景
- FCP
- Broadcom G620
- Brocade FOS 8.2.2c版
问题描述
- 由于
Current Switch Policy Status MARGINAL
证书已过期而导致交换机报告 - 在检查
seccertmgmt show -all
任何证书的输出时、此证书均未过期
Switch name:root> seccertmgmt show -all
ssh private key:
Does not Exist
ssh public keys available for users: None
Certificate Files:
-----------------------------------------------------------------------------
Protocol Client CA Server CA SW CSR PVT Key Passphrase
------------------------------------------------------------------------------
FCAP Empty NA Empty Empty Empty Empty
RADIUS Empty Empty Empty Empty Empty NA
LDAP Empty Empty Empty Empty Empty NA
SYSLOG Empty Empty Empty Empty Empty NA
HTTPS NA Empty Exist Expty Exist NA
KAFKA NA Empty NA NA NA NA
ASC NA Empty NA NA NA NA
Swich_Name:root> seccertmgmt show -cert https
Issued To
countryName= US
stateOrProvinceName= California
localityName= San Jose
organizationName= Broacde
organizationalUnitName= ENG
commonName= <IP_Address>
Issued By
countryName= US
stateOrProvinceName= California
localityName= San Jose
organizationName= Brocade
organizationalUnitName= Eng
commonName= <IP_Address>
Period of Validity
Begins On Apr 24 05:36:28 2023 GMT
Expires On Apr 11 05:36:28 2073 GMT
Fingerprints
SHA1 Fingerprint B4: D0:74:01: B1: D4: BD:81:C5: BD:8F: B8:xx:19:FE:8C:xx:xx:xx:30
SHA256 Fingerprint 25:E8:84:43:CC: FA:37: BC:F3: B2:9D:C1: DF:xx:xx:1E:
E4:BF:CE:EF: C7:3D: F5:xx:86:54:77:21:xx:xx:xx:5F
- raslog还可能包含一条消息、指出检测到证书已过期
Current Switch Policy Status: MARGINAL
Switch Health Report:
======================= Current Switch Policy Status: MARGINAL
Contributing Factors:
--------------------- *EXPIRED_CERTS (MARGINAL).