cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
723
Views
0
Helpful
1
Replies

IOx docker application package signing

smulye
Beginner
Beginner

Hello

I want to sign my docker application package that I am hosing on a Catalyst 9300. I am following the steps from this guide:

https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/iox/212472-configure-iox-package-signature-validati.html

I have generated a trust anchor tarball but when I try to import it on my 9300 device using ioxclient tool, I get this error:

 #./ioxclient platform signedpackages trustanchor set trustanchorv1.tar.gz
Currently active profile :  default
Command Name:  plt-sign-pkg-ta-set
Cannot unmarshal response from server to JSON. Malformed response.
Error occurred :  Trust anchor management is not enabled on this platform.

How do I fix this issue? Am I missing any configuration to enable "Trust anchor management"?

Any help would be much appreciated. Thanks in advance. 

1 Reply 1

alexstev
Cisco Employee
Cisco Employee

I couldn't find a repeat of this issue on the Interwebs and it's not mentioned in the Docs.

Duplicate post of this discussion found in other relevant forum: 

https://community.cisco.com/t5/devnet-sandbox/application-package-signing-on-iox-catalyst-9000-sandbox/td-p/4438544

The issue might be this is being tried in a sandbox (VM) and Trust Anchor is rooted in hardware.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers