Airheads Community

View Only

last person joined: 14 hours ago

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.

Back to discussions

Expand all | Collapse all

AP303H Cert Issue

This thread has been viewed 5 times

1. AP303H Cert Issue

0 Kudos
jrwhitehead
Posted Jul 22, 2019 03:00 PM

Reply Reply Privately
Hi,

We have an AP303H that's having what appear to be CPSec issues. We are seeing it reboot over and over.

Controller is running 6.5.3.3-FIPS.

Have tried factory resetting the AP.

The error log shows:
Jul 22 16:03:02 <sapd 311020> <ERRS> |AP <ap mac address>@<ap ip address> sapd| An internal system error has occurred at file key_mgmt.c function sapd_proc_stm_pskkeys line 793 error malloc error.
Jul 22 16:46:17 <nanny 303086> <ERRS> |AP <ap mac address>@<ap ip address> nanny| Process Manager (nanny) shutting down - AP will reboot!
Jul 22 16:48:14 KERNEL(<ap mac address>@<ap ip address>): [ 53.039759] Starting Kernel HMAC SHA384 FIPS KAT ...
Jul 22 16:48:14 KERNEL(<ap mac address>@<ap ip address>): [ 49.070536] Completed Kernel HMAC SHA1 FIPS KAT
Jul 22 16:48:14 KERNEL(<ap mac address>@<ap ip address>): [ 51.031761] Starting Kernel HMAC SHA256 FIPS KAT ...
Jul 22 16:48:14 KERNEL(<ap mac address>@<ap ip address>): [ 51.076609] Completed Kernel HMAC SHA256 FIPS KAT
Jul 22 16:48:14 KERNEL(<ap mac address>@<ap ip address>): [ 49.027761] Starting Kernel HMAC SHA1 FIPS KAT ...
Jul 22 16:48:14 KERNEL(<ap mac address>@<ap ip address>): [ 53.084602] Completed Kernel HMAC SHA384 FIPS KAT
Jul 22 16:48:14 KERNEL(<ap mac address>@<ap ip address>): [ 55.039760] Starting Kernel HMAC SHA512 FIPS KAT ...
Jul 22 16:48:14 KERNEL(<ap mac address>@<ap ip address>): [ 55.084609] Completed Kernel HMAC SHA512 FIPS KAT
Jul 22 16:48:15 <sapd 129002> <ERRS> |AP <ap mac address>@<ap ip address> sapd| 12311969:16:01:04>>ERROR>>Error while reading TPM Info from NVRAM Cache uninitialized
Jul 22 16:48:15 <sapd 129002> <ERRS> |AP <ap mac address>@<ap ip address> sapd| 12311969:16:01:04>>ERROR>>Error extracting factory certificates from flash. Check if flash is corrupted.
Jul 22 16:48:15 <sapd 129002> <ERRS> |AP <ap mac address>@<ap ip address> sapd| 12311969:16:01:04>>ERROR>>TPM or Device Cert Initialization failed.
Jul 22 16:48:15 <sapd 311020> <ERRS> |AP <ap mac address>@<ap ip address> sapd| An internal system error has occurred at file sapd_main.c function main line 3182 error Unable to initialize Factory Certificates or Field Certificates.
Jul 22 16:49:36 <stm 132105> <ERRS> |AP <ap mac address>@<ap ip address> stm| Invalid password len 0
Jul 22 16:49:40 <sapd 311020> <ERRS> |AP <ap mac address>@<ap ip address> sapd| An internal system error has occurred at file key_mgmt.c function sapd_proc_stm_pskkeys line 793 error malloc error.
Jul 22 16:49:52 <nanny 303086> <ERRS> |AP <ap mac address>@<ap ip address> nanny| Process Manager (nanny) shutting down - AP will reboot!
Jul 22 16:51:43 KERNEL(<ap mac address>@<ap ip address>): [ 50.893741] Starting Kernel HMAC SHA1 FIPS KAT ...
Jul 22 16:51:43 KERNEL(<ap mac address>@<ap ip address>): [ 56.895757] Starting Kernel HMAC SHA512 FIPS KAT ...
Jul 22 16:51:43 KERNEL(<ap mac address>@<ap ip address>): [ 56.940614] Completed Kernel HMAC SHA512 FIPS KAT
Jul 22 16:51:43 KERNEL(<ap mac address>@<ap ip address>): [ 50.936510] Completed Kernel HMAC SHA1 FIPS KAT
Jul 22 16:51:43 KERNEL(<ap mac address>@<ap ip address>): [ 52.895738] Starting Kernel HMAC SHA256 FIPS KAT ...
Jul 22 16:51:43 KERNEL(<ap mac address>@<ap ip address>): [ 52.940580] Completed Kernel HMAC SHA256 FIPS KAT
Jul 22 16:51:43 KERNEL(<ap mac address>@<ap ip address>): [ 54.940588] Completed Kernel HMAC SHA384 FIPS KAT
Jul 22 16:51:43 KERNEL(<ap mac address>@<ap ip address>): [ 54.895742] Starting Kernel HMAC SHA384 FIPS KAT ...
Jul 22 16:51:44 <sapd 129002> <ERRS> |AP <ap mac address>@<ap ip address> sapd| 12311969:16:00:58>>ERROR>>Error while reading TPM Info from NVRAM Cache uninitialized
Jul 22 16:51:44 <sapd 129002> <ERRS> |AP <ap mac address>@<ap ip address> sapd| 12311969:16:00:58>>ERROR>>Error extracting factory certificates from flash. Check if flash is corrupted.
Jul 22 16:51:44 <sapd 129002> <ERRS> |AP <ap mac address>@<ap ip address> sapd| 12311969:16:00:58>>ERROR>>TPM or Device Cert Initialization failed.
Jul 22 16:51:44 <sapd 311020> <ERRS> |AP <ap mac address>@<ap ip address> sapd| An internal system error has occurred at file sapd_main.c function main line 3182 error Unable to initialize Factory Certificates or Field Certificates.
Jul 22 16:53:08 <stm 132105> <ERRS> |AP <ap mac address>@<ap ip address> stm| Invalid password len 0
Jul 22 16:53:12 <sapd 311020> <ERRS> |AP <ap mac address>@<ap ip address> sapd| An internal system error has occurred at file key_mgmt.c function sapd_proc_stm_pskkeys line 793 error malloc error.

#AP303H
2. RE: AP303H Cert Issue

0 Kudos
EMPLOYEE

Herman Robers
Posted Jul 23, 2019 05:06 AM

Reply Reply Privately
I would contact Aruba TAC on this.
3. RE: AP303H Cert Issue

0 Kudos
jrwhitehead
Posted Jul 23, 2019 05:08 AM

Reply Reply Privately
Thanks Herman, I have.

I think some traffic may be blocked between the controller and AP. I'll report back once resolved.
4. RE: AP303H Cert Issue

0 Kudos
EMPLOYEE

sextoro
Posted Dec 04, 2019 11:36 AM

Reply Reply Privately
Was there any resolution to this?

Wireless Access

AP303H Cert Issue

1. AP303H Cert Issue

2. RE: AP303H Cert Issue

3. RE: AP303H Cert Issue

4. RE: AP303H Cert Issue