NetBackup status code: 9308
Message: Failed to read the certificate revocation list (CRL).
Explanation: The CRL is not present or there was an issue reading it.
Recommended Action: Do the following, as appropriate:
If NetBackup CA-signed certificate is used for communication: On all the hosts that are involved in the communication, examine the unified logs for nbpxyhelper (OID 486).
Examine the legacy logs for nbcertcmd.
For a Windows server, verify that the following directories exist:
install_path\NetBackup\var\vxss\crlFor a clustered master server:
install_path\NetBackup\var\global\vxss\crlFor a UNIX server, verify that the following directories exist:
/usr/openv/var/vxss/crlFor a clustered master server:
/usr/openv/var/global/vxss/crlFor a Windows server, verify in the
certmapinfo.jsonfiles that the crlPath values point to a valid path for the CRL:install_path\NetBackup\var\vxss\certmapinfo.jsonFor a clustered master server:
install_path\NetBackup\var\global\vxss\certmapinfo.jsonFor a UNIX server, verify in the
certmapinfo.jsonfiles that the crlPath values point to a valid path for the CRL:/usr/openv/var/vxss/certmapinfo.jsonFor a clustered master server:
/usr/openv/var/global/vxss/certmapinfo.jsonRun the following command for the master server:
./nbcertcmd -getCRL -server master_server_name
If external CA-signed certificate is used for communication:
On all hosts that are involved in the communication, examine the unified logs for
nbpxyhelper(OID 486).Examine the legacy logs for
nbcertcmd.For a Windows server, verify that the following directories exist:
install_path\NetBackup\var\vxss\crl
For a UNIX server, verify that the following directories exist:
/usr/openv/var/vxss/crl
Verify if above directory contains all the required valid CRLs (as per ECA_CRL_CHECK setting).
Click here to view technical notes and other information on the Cohesity Technical Support website about this status code.