RHEV/oVirt Environment is Non Responsive with Errors as: Received fatal alert: certificate_expired


1. Certificates have expired and all hosts are non responsive
2. Getting error as below in the engine logs:
ERROR [org.ovirt.engine.core.vdsbroker.irsbroker.UploadStreamVDSCommand] (DefaultQuartzScheduler_Worker-64) [6d32f092]
Command 'UploadStreamVDSCommand(HostName = xyz, UploadStreamVDSCommandParameters:{runAsync='true', hostId='12345dbe-1db1-11e1-ade1-00215e97f418'})' execution failed: javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_expired

ERROR [org.ovirt.engine.core.bll.UploadStreamCommand] (DefaultQuartzScheduler_Worker-64) [6d32f092] Command'org.ovirt.engine.core.bll.UploadStreamCommand' failed: EngineException:org.ovirt.engine.core.vdsbroker.vdsbroker.VDSNetworkException: javax.net.ssl.SSLHandshakeException:
Received fatal alert: certificate_expired (Failed with error VDS_NETWORK_ERROR and code 5022)

Starting with RHEV 3.5.4 and beyond, the engine-setup utility updates all the certificates automatically.

For details please see the following solution.
1. Take backup of RHEVM database
2. Then run the # engine-setup to renew the certificates.

Example, below will be asked when the engine setup is run, provide the input as `Yes` to renew the certificates


One or more of the certificates should be renewed, because they expire soon or include an invalid expiry date, which is rejected by recent browsers.
If you choose "No", you will be asked again the next time you run Setup.
See https://access.redhat.com/solutions/1572983 for more details.
Renew certificates? (Yes, No) [No]: Yes

3. It will also upgrade to the latest minor version available for RHEV
4. If the hosts certificates are expired then one by one put the host in Maintenance mode, then remove it and re-add the same so the new certificates are generated.

Root Cause
1. PKI certificates expired since initial RHEV installation and should be renewed.
2. RHEV-M upgrade asks to renew certificate. What does it mean?

Diagnostic Steps
1. Collect the following information from affected environment to check the issue further:
2. On the RHEV-M machine:
# cd /etc/pki/ovirt-engine; ls -lh database.txt database.txt.attr serial.txt cacert.conf cert.conf
# openssl x509 -in /etc/pki/ovirt-engine/ca.pem -noout -text
# openssl x509 -in /etc/pki/ovirt-engine/apache-ca.pem -noout -text
# openssl x509 -in /etc/pki/ovirt-engine/engine.cer -noout -text

3. SSH into the affected host:
# ls -al /etc/pki/vdsm/certs/
# openssl x509 -in /etc/pki/vdsm/certs/vdsmcert.pem -noout -text


Posted in Linux, oVirt, RedHat, RHEV, RHV, Virtualization | Tagged , , , ,

How to Install oVirt Guest Agent in Fedora/CentOS/RHEL


The oVirt Guest Agent provides information, notifications, and actions between the oVirt web interface and the guest. The agent provides the Machine Name, Operating System, IP Addresses, Installed Applications, Network and RAM usage and others details to the web interface.

The agent also provides Single Sign On so a authenticated user to the web interface does not need to authenticate again when connected to a VM.

First, install epel:
sudo yum -y install epel-release

Install oVirt Guest Tools using yum:
sudo yum install ovirt-guest-agent-common

Enter the following command to start the service:
sudo systemctl enable ovirt-guest-agent.service && sudo systemctl start ovirt-guest-agent.service

The web admin interface may take some time to start displaying the memory usage and other types of information. If you find that after some time this information has not been populated, restart the VM by performing a shut down or power off, power on, and verify that the service is started by running.


Posted in oVirt | Tagged , ,

How to Identify the File System Type in Linux/Solaris



There are few methods how to determine your linux file system. Below are commands that I usually use.


$ df -Th
$ df -Th | grep "^/dev" 
$ fsck -N /dev/sd*
$ lsblk -f
$ mount | grep "^/dev"
$ cat /etc/fstab


$ df -n 
$ mount -p
$ zfs list
$ fstyp /dev/rdsk/c*d*s*


Posted in freeBSD, Linux, Solaris, UNIX | Tagged ,

Happy New Year 2018!


Last login: Tue Jan 2 12:11:49 2018 from
[hanief@master ~]$ mv 2017 /archive
[hanief@master ~]$ sudo mkdir 2018
[hanief@master ~]$ cd 2018
[hanief@master ~]$ vi goals.sh
[hanief@master ~]$ chmod +x goals.sh
[hanief@master ~]$ nohup ./goals.sh &
[hanief@master ~]$ exit


Posted in Linux, UNIX | Tagged ,

CentOS-7 “Minimal Desktop” installation (GNOME)



For some reasons you need to install GUI on your CentOS server. In my case, I having a bad time to install Oracle Database 12c in my CentOS using CLI. I don’t have plenty of times struggling with CLI environment. I have to finish my work as soon as possible so then I can enjoy my coffee. I just need a very minimal GUI to achieve my goal.

Follow the steps below;

  1. Install CentOS-7 – Minimal (of course)
  2. yum groupinstall “X Window System”
  3. yum install gnome-classic-session gnome-terminal nautilus-open-terminal control-center liberation-mono-fonts
  4. unlink /etc/systemd/system/default.target
  5. ln -sf /lib/systemd/system/graphical.target /etc/systemd/system/default.target
  6. reboot

Now you have a CentOS-7 Minimal Desktop installation LIKE CentOS-6 Minimal Desktop



Posted in Install, Linux, UNIX | Tagged , , , , , , , ,

Enable Snipping Tools in Win Server 2012 R2


Snipping Tool is not enabled by default in Wndows Server 2012 R2. To install Snipping Tool, just follow the next instructions:

  1. Go to Server Manager
  2. Click Manage in the upper right corner.
  3. Click Add Roles and Features.
  4. Click Next > Next > Next.
  5. At Server Selection select your server.
  6. Click Next > Next.
  7. At Features expand User Interfaces and Infrastructure.
  8. Check Desktop Experience.
  9. If an Add Roles and Features Wizard window pops up with a list of features required for Desktop Experience , just click Add Features.
  10. Click Next > Install.
  11. Restart your server. (Restart?? WTF..Stupid Windows)


Posted in Windows | Tagged , , , , , , , , ,

How to Setup network on RHEL/CentOS 7 (Minimal)


Issue: Not able to connect to network/internet.
Caused by: Ethernet interfaces are not enabled by default.

Step 1: First, type “nmcli d” command in your terminal for quick list ethernet card installed on your machine:
Screen Shot 2017-12-09 at 02.23.48

Step 2: Type “nmtui” command in your terminal to open Network manager. After opening Network manager chose “Edit connection” and press Enter (Use TAB button for choosing options).
Screen Shot 2017-12-09 at 02.27.44

Step 3: Now choose you network interfaces and click “Edit”
Screen Shot 2017-12-09 at 02.31.07

Step 4: Configure DHCP. Choose “Automatic” in IPv4 CONFIGURATION and check Automatically connect check box and press OK and quit from Network manager.
Screen Shot 2017-12-09 at 02.34.09

Step 5: Reset network services. Run service network restart

Now test your connection.


Posted in Linux, UNIX | Tagged , ,