.png?width=180&height=32&name=NW%20Logo%20(2).png){kind=small}
NetWitness Upgrade Precheck - Puppet CA probe - Checks Truststore.pem file for outdated Puppet CA certificates
Issue
The Precheck tool is unable to complete successfully due to warnings generated by the probe that checks for the presence of the Puppet CA in the Truststore.pem file on the Admin Server.Cause
The failure happened because there is an outdated Puppet CA certificates in the Truststore.pem file.
Resolution
If the Puppet CA is outdated or expired, certificates must be identified and removed to prevent any potential issues caused during the upgrade.
- To check if the Puppet CA exists and if its expired or not, run the following command:
keytool -printcert -file /etc/pki/nw/trust/truststore.pem | awk '/Valid from:/, /until:/ {print} /Puppet CA/'
- If the output shows that the certificate is expired please contact the NetWitness Customer Support team before proceeding with the upgrade referencing this article.
Product Details
NetWitness Product Set: NetWitness PlatformNetWitness Product/Service Type: All Nodes
NetWitness Version/Condition: 12.0 or later
Platform: CentOS/Alma
Approval Reviewer Queue
Technical approval queue