Enterprise Vault connection failure of secondary storage with Azure or AWS due to invalid cloud certificate

book

Article ID: 100071197

calendar_today

Updated On:

Description

Error Message

Event ID: 28944 The 3rd party storage system application 'OST Streamer' has logged the following message: 
CStreamerObject::Init(): method failed
Reason = 0x80070057
Description = OST API sts_open_server() failed with error: 2060001 - 'one or more invalid arguments'.

Dtrace logs with curl logs enabled show following error:
 
[xxxxx] (StorageManagement) EV:M OST Streamer: [TID:xxxx] [Plugin] AzureJob  == Info: SSL certificate problem: unable to get local issuer certificate

Cause

The error in connection occurs if cacert.pem is no more a valid certificate and will give error when connecting to cloud.

Resolution

To resolve this issue:

  1. Download cacert.pem of CA certificates extracted from Mozilla from https://curl.se/docs/caextract.html.
  2. Copy the cacert.pem to following locations in Enterprise Vault server:
    \Enterprise Vault\CloudStreamer
    \Enterprise Vault\OST
    \Enterprise Vault\OST\x64
     
    For example, if Enterprise vault is installed in the default location, 
    "C:\Program Files (x86)" then cacert.pem is required to be copied to following 3 folders:
     
    C:\Program Files (x86)\Enterprise Vault\CloudStreamer
    C:\Program Files (x86)\Enterprise Vault\OST
    C:\Program Files (x86)\Enterprise Vault\OST\x64
  3. Try reconnecting to the Azure or AWS storage issue should be resolved.

Note: Solution is applicable to all Enterprise Vault versions where connectivity to Azure and AWS cloud is allowed either for primary partition storage or for secondary storage migration.

Issue/Introduction

Enterprise Vault unable to connect to Azure or AWS.

Additional Information

JIRA: EV-67158
Powered by Wolken Software