CSM: CSI Driver for PowerScale shows "certificate signed by unknown authority"

Summary: Container Storage Modules (CSM) Family: The Container Storage Interface (CSI) Driver for PowerScale shows "certificate signed by unknown authority." This is after setting X_CSI_ISI_SKIP_CERTIFICATE_VALIDATION to false in order for the driver to verify OneFS server's certificates. ...

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

The following errors appear after setting X_CSI_ISI_SKIP_CERTIFICATE_VALIDATION to false for the driver to verify OneFS server's certificates:

time="2025-04-14T20:20:24Z" level=error   msg="init client failed for isilon cluster 'isilon_cluster_name': 'Get "isilon_fqdn:8080/platform/latest/": tls: failed to verify certificate: x509: certificate signed by unknown authority'" file="/go/src/service/service.go:459"
time="2025-04-14T20:20:24Z" level=error   msg="failed to get isi client for  cluster isilon_cluster_name, error: Get "isilon_fqdn:8080/platform/latest/": tls: failed to verify certificate: x509: certificate signed by unknown authority" file="/go/src/service/service.go:736"

The driver worked before this change was made.

Cause

The user set X_CSI_ISI_SKIP_CERTIFICATE_VALIDATION to false for the driver to verify OneFS Application Programming Interface (API) server's certificates.

The customer did not have the CERT_SECRET_COUNT parameter set to a minimum value of 1. 

Resolution

The user resolved the issue by setting the CERT_SECRET_COUNT parameter to a minimum value of 1.

Affected Products

Container Storage Modules

Products

Container Storage Modules Family
Article Properties
Article Number: 000312476
Article Type: Solution
Last Modified: 08 أيار 2026
Version:  3
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.