IDP health shows a warning message Server may not be operational

  • 7007051
  • 14-Oct-2010
  • 26-Apr-2012

Environment

Novell Access Manager 3.1 Access Administration
Novell Access Management 3.1  Support Pack 2 IR2 applied

Situation

IDP health will show : Server may not be operational (Warning)
But in the description, administrator will not get a conclusive message on what is going wrong.

If you drill down further the below info is seen:

Services
-----------
Identity Server Configuration 
Configuration Datastore
User Datastores
Signing, Encryption and SSL Connector Keys

Identity Server Configuration
------------------------------
Fully applied

Configuration Datastore
-----------------------
Operating properly

User Datastores
-----------------
Operating properly

Signing, Encryption and SSL Connector Keys        
-------------------------------------------
Signing key available ,Certificate Subject Name = CN=rdm.test.com, OU=Terms of
use at www.verisign.com/cps/testca (c)05, OU=ism, O=novell, L=Reeuwijk,
ST=zh C=nl ,Validity in Days = 13 
Encryption key available ,Certificate Subject Name = O=novell,
OU=accessManager, CN=test-encryption ,Validity in Days = 726
SSL Connector key available ,Certificate Subject Name = O=novell,
OU=accessManager, CN=test-connector ,Validity in Days = 726

Resolution

If under Signing key available a Validity period will show from 60 days or less you should start considering to replace that certificate.
A bug has been submitted to engineering to give a more conclusive message that the certificate will expire in x amount of days.

Additional Information

There is a check for certificates that will detect if certificates will expire within 60 days.
When this is detected the above is seen.
The IDP will keep on behaving normally till the certificate really expires.

Feedback service temporarily unavailable. For content questions or problems, please contact Support.