question

shyamala p. avatar image
shyamala p. asked ·

Server missing keys on all AMD's

hi All,

We have noticed server missing keys on all AMD's in NAM.listed all certs which is having missing keys and updated in DCRUM as well.But still we are seeing same message.Moving one step ahead we verified is that cert installed on AMD server or not.even we found matched certs still we are seeing server missing keys.

Can anyone suggest on how to proceed on this issue.


Thanks

Shyamala

namnam console
10 |2000000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 50.0 MiB each and 250.0 MiB total.

shyamala p. avatar image
shyamala p. answered ·

hi Andre,

While running the script for updating the certs,it pushes both the cert and key at a time.All the certs which are having 'server missing keys' have private keys for all the hosts.



Share
10 |2000000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 50.0 MiB each and 250.0 MiB total.

Andre V. avatar image
Andre V. answered ·

I assume you're referring to 'server missing keys' as a server for which SSL decryption is not taking place? Can you verify which servers those are e.g. MS SQL?

If the AMD detects encrypted traffic and you're not decrypting all encrypted traffic that it sees, it will always tell you this warning/error message, from what I've seen. You should see a list of IP's for which it cannot decrypt the traffic; verify that the AMD has the private key for all those hosts if you haven't already.

1 comment Share
10 |2000000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 50.0 MiB each and 250.0 MiB total.

hi Andre,

While running the script for updating the certs,it pushes both the cert and key at a time.All the certs which are having 'server missing keys' have private keys for all the hosts.

0 Likes 0 · ·