Cisco ACI: APIC Certificate Bug (it’s a nasty time-waster)

The Topology

The Issue

‘acidiag fnvread’ from the APIC CLI
APIC GUI shows Status: Inactive

The Fault

  • “Failed to parse the subject line as a valid ACI fabric certificate AND Invalid Serial Number AND Invalid Product ID”
The problem certificate, installed at the factory. The Common Name is the serial number of that APIC.
  • Correct pattern: /serialNumber=PID: SN:/CN=
  • Incorrect Pattern:/CN=/serialNumber=PID: SN:

The Bug

The Fix

Questions? Comments?

--

--

--

Data center/security/collab hack, CCIE #5026, focusing on automation, programmability, operational efficiency and getting rid of technical debt.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

OKRs HowTo

GraphQL for the Beginner Pythonistas

Endless Battlefield Development Log -May 22th,2022

Rust: Bigger Building Blocks — Intro to Enumerations

Image by: Viktoria Slowiskowska, from pexels.com

Creating The Kubernetes Cluster On AWS EKS

QUEST Drop Round 1 : AirDrop

The 5 steps to intelligent networks

API — The technology’s Business Front Gate

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Liam Keegan

Liam Keegan

Data center/security/collab hack, CCIE #5026, focusing on automation, programmability, operational efficiency and getting rid of technical debt.

More from Medium

Introduction — Quotidian — 001

Cooking up some API goodness for you

What is a Java Full Stack Developer and How Do You Become One?

Learning practical things in software development