.png?width=180&height=32&name=NW%20Logo%20(2).png){kind=small}
Upgrading error with truststore key in RSA NetWitness 11
Issue
Upgrading NetWitness Admin Server fails due to the below error.
chef-solo.log:
[2020-04-22T02:06:17+00:00] FATAL: Mixlib::ShellOut::ShellCommandFailed: nw_pki_truststore[/etc/pki/nw/trust/truststore.jks] (nw-pki::truststores line 24) had an error:
Mixlib::ShellOut::ShellCommandFailed: execute[export:/etc/pki/nw/trust/truststore.jks:web-server-cert] (/var/lib/netwitness/config-management/cache/cookbooks/nw-pki/resources/truststore.rb line 99) had an error:
Mixlib::ShellOut::ShellCommandFailed: Command execution failed. STDOUT/STDERR suppressed for sensitive resource
[2020-04-22T02:06:17+00:00] FATAL: Mixlib::ShellOut::ShellCommandFailed: nw_pki_truststore[/etc/pki/nw/trust/truststore.jks] (nw-pki::truststores line 24) had an error:
Mixlib::ShellOut::ShellCommandFailed: execute[export:/etc/pki/nw/trust/truststore.jks:web-server-cert] (/var/lib/netwitness/config-management/cache/cookbooks/nw-pki/resources/truststore.rb line 99) had an error:
Mixlib::ShellOut::ShellCommandFailed: Command execution failed. STDOUT/STDERR suppressed for sensitive resource
Cause
Unable to export truststore.jks due to possible bad custom certificate under /etc/pki/nw/trust/import directory.Resolution
- Move out all certs files from /etc/pki/nw/trust/import directory to /root
- Continue the upgrade.
- Copy the certs back from /root to /etc/pki/nw/trust/import directory
- Reboot
Product Details
RSA Product Set: RSA NetWitness PlatformRSA Product/Service Type: NetWitness Admin Server
RSA Version/Condition: 11.4.x
Approval Reviewer Queue
RSA NetWitness Suite Approval Queue