UCS- Invalid Keyring certificate Alert
Cisco UCS Error # default Keyring’s certificate is invalid, reason: expired.
—————————————————————————
FI-B# show fault 252396 detail
Fault Instance
Severity: Major
Code: F0909
Last Transition Time: 2015-11-20T11:26:41.156
ID: 252396
Status: None
Description: default Keyring’s certificate is invalid, reason: expired.
Affected Object: sys/pki-ext/keyring-default
Name: Pki Key Ring Status
Cause: Invalid Keyring Certificate
Type: Security
Acknowledged: No
Occurrences: 1
Creation Time: 2015-11-20T11:26:41.156
Original Severity: Major
Previous Severity: Major
Highest Severity: Major
—————————————————————————-
We just need to regenerate the keyring using the following the procedure,
The below steps will take care of the alert, by regenerating the certificate.
# scope security
/security # scope keyring default
/security/keyring # set regenerate yes
/security/keyring *# commit-buffer
FI- /security # show keyring detail
Keyring default:
RSA key modulus: Mod2048
Trustpoint CA:
Cert Status: Expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
XX:1d:0c:5e:41:xx.xx.xxx
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=EXB
Validity
Not Before: Nov 20 08:21:06 2014 GMT
Not After : Nov 20 08:21:06 2015 GMT