Application package signing on IOX Catalyst 9000 sandbox

smulye · ‎07-25-2021

I want to sign my docker application package that I would like to host on a Catalyst 9000 DevNet Sandbox. I am following the steps from this guide:

https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/iox/212472-configure-iox-package-signature-validati.html

I have generated a trust anchor tarball but when I try to import it on my sandbox using ioxclient tool, I get this error:

#./ioxclient platform signedpackages trustanchor set trustanchorv1.tar.gz
Currently active profile :  devnet
Command Name:  plt-sign-pkg-ta-set
Cannot unmarshal response from server to JSON. Malformed response.
Error occurred :  Trust anchor management is not enabled on this platform.

How do I fix this issue? Am I missing any configuration to enable "Trust anchor management"?

Any help would be much appreciated. Thanks in advance.

bigevilbeard · ‎08-01-2021

@smulye not an area i know - but found this doc https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/iox/212472-configure-iox-package-signature-validati.html

Please mark this as helpful or solution accepted to help others
Connect with me https://bigevilbeard.github.io

smulye · ‎08-04-2021

Thank you @bigevilbeard for your reply. I followed the steps from this document (as you will see from my original post) but I couldn't complete step 3 "Import Trust Anchor on IOx-Device" because of this error:

Error occurred :  Trust anchor management is not enabled on this platform.