I am installing a new Linux client 8.1.1 version. We have the error running the getCAcertificate, we have verified that name resolution between client and master is ok.
The bptestbpcd give us the following error:
bptestbpcd -client lvwgdmtstapp2 -verbose
<16>bptestbpcd main: Function ConnectToBPCD(lvwgdmtstapp2) failed: 7658
<16>bptestbpcd main: Connection cannot be established because the host validation cannot be performed on the target host
Connection cannot be established because the host validation cannot be performed on the target host
Thanks for your help, any advice is welcomed.
I forgot to say that pbx is running and the 1556 port is reachable by the master. Firewall is disabled in the client.
Thanks for your reply
I have used: nbcertcmd -getCAcertificate -server servername
thanks and best regards
try this on the client and the master
and then this on the client :
nbcertcmd -getcacertificate -force
nbcertcmd -getcertificate -force -token (generate a new token from the master)
and put the output here.
also a snip of high verbo of nbcert log would be helpful
-force option seems not be available.
nbcertcmd -getCAcertificate -help
Usage: nbcertcmd -getCACertificate
Connects to the master server and gets the certificate of the Certificate
Authority (CA). It then displays the fingerprint of the certificate and adds
it to the local trust store after confirmation from the user.
Performs the operation on the global certificate store.
Specifies the path of the file containing the CA certificate fingerprint.
Specifies an alternate master server. By default, this command uses the
first server entry in the NetBackup configuration.
Thanks and best regards
mybad, for the first command "nbcertcmd -getCacertificate" only,
the -force is for the second command "ncbertcmd -getcertificate -force"
are you able to ping the masters name?
are you able to telnet the port 1556 to the master?
if yes, verify the entry SERVER in netbackup's config on the client's registry if its a windows or the bp.conf if its a linux/unix.
when all these are good then rerun the commands and provide nbcert log (high verbo)
NBlease note the FQDN & Short name of both clients & masters (clients name on the master & master's name on the client)..
are you able to ping the masters name? Yes, no problem
are you able to telnet the port 1556 to the master? Yes no problem
if yes, verify the entry SERVER in netbackup's config on the client's registry if its a windows or the bp.conf if its a linux/unix. - Yes master server is the first line SERVER in bp.conf
From nbcert.log we see the following error:
NBClientCURL:erformCurlOperation: Failed to perform operation: Peer certificate cannot be authenticated with given CA certificates
thanks and best regards