Failed to request local certificates

Symptom

Local certificate requests cannot be submitted.

Analysis

Solution

  1. Fix the network connection problems, if any.

  2. Obtain or import the CA certificate.

  3. Use the ping command to verify that the registration server is reachable.

  4. Use the certificate request from command to specify the correct certificate request reception authority.

  5. Configure the PKI entity parameters as required by the registration policy on the CA or RA.

  6. Specify the key pair for certificate request, or remove the existing key pair, specify a new key pair, and submit a local certificate request again.

  7. Use the pki abort-certificate-request domain command to abort the certificate request.

  8. Specify the correct source IP address that the CA server can accept. For the correct settings, contact the CA administrator.

  9. Synchronize the system time of the device with the CA server.

  10. If the problem persists, contact Hewlett Packard Enterprise Support.