Im using OMU 8.35
Im facing problem with tow servers while Im trying to grant the certificate,the garnting is taking too much time,and i got below error message :
Signed certificate could not be delivered to node. Could not send response after 120 retries (OpC40-2063)
anybody faced this problem & how to solve it ??
Go to Solution.
Is bbc communication working fine between node and manager?
From the node:
#bbcutil –ping <fqdn_ms>
#bbcutil –ping <ip_ms>
From the management server:
#bbcutil –ping <fqdn_node>
#bbcutil –ping <ip_node>
If those outputs show any errors, please verify if there is a firewall between the agent and the server. Also, check if port 383 is open (you can try to telnet to the port to verify)
Once you verify this, an easy way to reissue certs is this:
ovcert -listovcert -remove <output of previous command>ovcoreid -create -forceovcert -certreq
Finally, keep in mind that OMU 8 is currently out of support. I recommend you to move to version 9 at your earliest convenience.
the port 383 is enabled !!
i got below error on my browser for the managment server :
Certificate Server Adapter can not handle certificate requestsbecause it could not connect to the OV Certificate Server process on the node.Check whether the process is running. (OpC40-2112)
is it releated to my issue ?
Most likely it is - it's the 'ovcs' process which does part of the job so without it it's not going to work.
Try to start it (using ovc) and also verify you have the latest HPOvSecCS patch installed for OMU 8.x
You should specify your platform first.
For platform independent way look at this output:
ovconfget -ovrg server opc.patches
And for this patch only:
Use the ovc -status command on the managment server and let us have the output.
If you see the ovcs process stoped, run this command:
more /var/opt/OV/log/System.txt | grep ovcs
That should give us some clues on how to proceed.
Also, check if the agent processes are running as well, from the managment server:
ovdeploy -cmd "opcagt -status" -node <node_with_issues>
many thanks all,
problem solved,the telnet was disabled from managment server to target node.