sslcfg command errors

This topic lists errors for the sslcfg command.

See Common errors for a list of error messages that apply to all commands. See sslcfg command for information about command syntax and examples of command use.

Table 1. sslcfg command errors.

The error table is a multi-row, two-column table where each row describes a CMM CLI command error: column one lists the error reported by the command-line interface and column two describes what the error means.

Error message Definition
-csa can only be used with -gen ca A user tries to issue the -csa option without the -gen option or without providing the ca argument for the -gen option.
-csa must be specified when the mode is comp A user tries to generate a CA certificate, failing to specify the certificate signing algorithm while the cryptographic mode is set to comp (compatibility with all NIST cipher suites).
-dnld or -upld must be with -u specified A user tries to issue a download certificate signing request or an import certificate command without the -u option.
-f can only be used with -dnld cert/csr A user tries to specify the format of a certificate or certificate signing request without specifying a download.
-u must be provided to import a trusted certificate A user tries to issue an import trusted certificate command without the -u option.
Arguments of required options must not be blank A user tries to enter a required option without its argument.
CA certificate regeneration not permitted. The following nodes require an update to the latest blade firmware: node

where node identifies the compute nodes requiring a firmware update.

A user attempts to regenerate a CA certificate when compute node firmware requires an update to support the change.
CA generation does not support user inputs A user tries to generate a CA certificate with options other than -csa.
Cannot open file: filename

where filename is the name of the file that was entered for opening.

An error occurs while the CMM is trying to open a file.
CLI map failed error = error

where error specifies error.

An error occurs while the CMM is mapping the file to memory.
CMM security policy disallows -httpse disable (http enable) right now. A user tries to disable the SSL server when the CMM security policy is set to secure.
Converting DER back to X509 format failed. An error occurs while the CMM is converting DER back to X509 format.
CSR generation for client failed An error occurs while the CMM is generating a certificate signing request for a client.
CSR generation for server failed An error occurs while the CMM is generating a certificate signing request for a server.
Deleting trusted_certindex failed

where index is the number of the selected trusted certificate, between 1 and 4 (inclusive).

A user tries to delete a nonexistent trusted certificate.
Downloading Cert/CA/CSR to argument failed

where:

  • Cert/CA/CSR specifies whether the user tried to download a certificate, certificate authority, or certificate signing request.
  • argument identifies the remote location of the item be downloaded from. It must specify a fully qualified filename.
An error occurs while the CMM is downloading a certificate, certificate authority, or certificate signing request.
Error: unknown certificate An error occurs because an unknown certificate type is referred to.
Exporting Cert/CSR/CA failed

where Cert/CSR/CA specifies whether the user tried to export a certificate, certificate signing request, or certificate authority.

An error occurs while the CMM is exporting a certificate, certificate signing request, or certificate authority.
File transfer failed. An error occurs while transferring a file during file upload.
File transfer failed abnormally. An error occurs while transferring a file during file upload.
Generate CA failed An error occurs during CA certificate generation.
Getting SSL Client Certificate status failed. An error occurs while the CMM is reading the SSL client certificate status.
Getting SSL CSR status failed. An error occurs while the CMM is reading the SSL certificate signing request status.
Getting SSL Server Certificate status failed. An error occurs while the CMM is reading the SSL server certificate status.
Getting SSL Server CSR status failed. An error occurs while the CMM is reading the SSL server certificate signing request status.
Importing url failed

where url is the URL that was entered.

An error occurs while importing the indicated URL.
Invalid argument for -view A user tries to issue a command with an invalid argument for the -view option.
Invalid SSL target for Trusted certificate: server A user tries to issue a command for a trusted certificate with a target of server'.
Invalid URL for -u: url

where url is the URL that was entered.

A user tries to enter a URL that is not valid.
Missing required options. A user tries to issue a command for the SSL configuration without entering all the required options.
Mode nist800-131a requires rsa2048sha256 A user tries to generate a CA certificate using rsa2048sha1 as the signing algorithm while the cryptographic mode is set to nist800-131a.
No Cert/CSR/CA available.

where Cert/CSR/CA specifies whether the user specified a certificate, certificate signing request, or certificate authority.

A user tries to issue a command to download a nonexistent certificate, certificate signing request, or certificate authority.
No trusted_certindex available.

where index is the number of the selected trusted certificate, between 1 and 4 (inclusive).

A user tries to issue commands to a nonexistent trusted certificate.
No valid client certificate is in place. Type 'sslcfg -h' for syntax help of the SSLclient Certificate generation command. A user tries to issue a command to enable the SSL client without a valid client certificate in place.
No valid server certificate is in place. Type 'sslcfg -h' for syntax help of the SSL Server Certificate generation command. A user tries to issue a command to enable the SSL server without a valid server certificate in place.
No valid trusted certificate is in place. Type 'sslcfg -h' for syntax help of the SSL trusted Certificate importing command. A user tries to issue a command to enable the SSL client without a valid trusted certificate in place.
There was a problem downloading the file The user does not have the authority for downloading or an error occurs when downloading.
There was a problem retrieving the file. An error occurred when transferring the file.
Update Failed, invalid remote location specified The location specified for update is not valid.
URL syntax checking failed A user tries to enter a URL that is not valid.
Viewing CA failed An error occurs while viewing a certificate authority.
Writing X509 format certificate to file failed. An error occurs while the CMM is writing the X509 format certificate to File.