Cisco ACI: APIC Certificate Bug (it’s a nasty time-waster)

The Topology

The Issue

‘acidiag fnvread’ from the APIC CLI
APIC GUI shows Status: Inactive

The Fault

  • “Failed to parse the subject line as a valid ACI fabric certificate AND Invalid Serial Number AND Invalid Product ID”
The problem certificate, installed at the factory. The Common Name is the serial number of that APIC.
  • Correct pattern: /serialNumber=PID: SN:/CN=
  • Incorrect Pattern:/CN=/serialNumber=PID: SN:

The Bug

The Fix

Questions? Comments?

--

--

--

Data center/security/collab hack, CCIE #5026, focusing on automation, programmability, operational efficiency and getting rid of technical debt.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

What is Unit Testing?

Solving Coding Frustration

Frustration is a common situation for coders.

GoReleaser v1.9 — the 10k stars release

All you really need to know about Amazon Web Services

TryHackMe: Wgel

How to Implement Subscriptions In-App Purchase in Flutter

How to Implement Subscriptions In-App Purchase in Flutter

Onwards & Upwards

HTTP Notes

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Liam Keegan

Liam Keegan

Data center/security/collab hack, CCIE #5026, focusing on automation, programmability, operational efficiency and getting rid of technical debt.

More from Medium

Rivian should focus on domestic production and decentralize more decisions

Project Week!

Junior Moe Moore (Philadelphia, Pa./Archbishop