Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
811
Views
35
Helpful
1
Replies

APIC-M2 after discovering inactive Switches with certificate error

MW6
Level 1
Level 1

‎02-26-2022 12:17 PM

Hello Community,

 

I created a small ACI Lab and finally I found an old APIC-M2.

According to the BIOS, the TPM module is owned.

However, if I start the installation of the APIC, the installation fails.

As soon as I disable the TPM and install version 4.0(3d), the APIC boots and I can update to version 4.2(7r) with the TPM enabled.

Now I have connected my Leaf and Spine switches (LLDP on VIC disabled and CIMC dedicated) these are detected and the switch goes to inactive state after a short time.

All settings look good so far.. Except for the certificate of the APIC.. This reports an error during the certificate check as well and  the error F3031.

I assume that this is why the switches will be switched to inactive.

 

What options do I have to renew this certificate? I assume that unfortunately the certificate on the TPM is defective here.

Unfortunately, I do not have a valid service contract for the APIC.

 

I hope you can help me.

Thank you!

Labels:
Preview file
84 KB
Preview file
161 KB
Preview file
258 KB
Preview file
1682 KB
1 Reply 1

Robert Burns
Cisco Employee
Cisco Employee

‎02-27-2022 04:53 AM

The only way to regenerate the certs is through TAC unfortunately. You may try to reach out to your local Cisco account team and see if they can open an SR on your behalf.

Robert
Customers Also Viewed These Support Documents

Save 25% on Day-2 Operations Add-On License