NetBackup status code: 6817
Message: One or more hosts do not have the required CA certificates in their trust stores. Communication with these hosts may break. Rerun the command with the -force option to skip this validation.
Explanation: The NetBackup CA migration cannot be activated as the latest certificates for a few hosts are not present in their trust stores. NetBackup CA migration should be activated when the trust is established among all the hosts in the domain using the NetBackup CAs. The trust is established automatically for a NetBackup 8.2.1 or later host. If you have any hosts that are on a version before 8.2.1, manual activation steps must be completed.
Recommended Action: Do the following, as appropriate:
Ensure that the NetBackup CAs are present in the trust stores of all hosts in the domain before activating the NetBackup CA migration. The trust is established automatically for a NetBackup 8.2.1 or later host and can be verified using the
RESTful API GET /security/certificate-authorities/hosts-pending-trust-propagationor the nbseccmd -nbcamigrate -hostspendingtrustpropagation command. Verify the trust propagation for NetBackup 8.2 or earlier hosts manually. The list of CAs that should be present in the trust store of the host can be listed using theRESTful API GET /security/cacert.If you want to skip the validation, rerun the command with the -force option.
Click here to view technical notes and other information on the Cohesity Technical Support website about this status code.