Dell Unity: uemcli Command Not Showing "(3) Accept and store," Unable to Store SSL Certificate

Summary: This article describes the causes and solutions when Option [3] in the menu about Certificate is not displayed in the uemcli command. (User Correctable)

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

Three options are displayed when running the uemcli command until the Certificate is stored.

However, sometimes the menu appears again even though the Certificate has been stored before, and the menu Option [3] does not appear.

When that happens, Option [1] must be selected each time the command is run.

Display when there is no issue:

12:03:47 service@<Array Name> spb:~/user> uemcli -no /sys/general show
Remote certificate:
Issuer: CN=<Array Name>
Subject: CN=<Array Name>
Valid from: 2022:02:17:12:08:46
Valid to:   2025:02:16:12:08:46
Serial: xxxxxxxxxxxxxx
Id: xxxxxxxxxxxxxx
Would you like to:
  [1] Accept the certificate for this session
  [2] Reject the certificate
  [3] Accept and store
Please input your selection (The default selection is [1]):

Display when this issue event occurs:

09:11:08 service@<Array Name> spb:~/user> uemcli -no /sys/general show
Remote certificate:
Issuer: CN=<Array Name>
Subject: CN=<Array Name>
Valid from: 2019:01:15:10:06:10
Valid to: 2022:01:14:10:06:10
Serial: xxxxxxxxxxxxxx
Id: xxxxxxxxxxxxxx
Would you like to:
  [1] Accept the certificate for this session
  [2] Reject the certificate
Please input your selection (The default selection is [1]):
NOTE: Running an automated tool that incorporates the uemcli command from the client side may not get the correct results from the tool after a certain date. This is because the above menu is displayed before the result of uemcli running.

Cause

This occurs when the SSL Certificate is expired.

Unity's SSL certificate expires after three years, but it is automatically regenerated when the expiration date approaches.

However, due to a software issue in Unity OE 5.0.x or earlier versions, it is not automatically regenerated and expired.

Resolution

This issue is addressed in Unity OE 5.3.0. 


Workaround:

There are two options to update the Certificate:

  • Option 1 is User correctable. 

Follow article 22509 Dell Unity: How to manually renew a Unity Management SSL certificate. (User correctable.)

  • Option 2

If temporarily renaming the Unity system is not preferred, an alternative solution can be implemented. This solution requires assistance from Dell Technical Support. Reference this article number when contacting Support.

Additional Information

Select Option [3] Accept and store, and all downloaded certificates are stored in the secure, local lockbox on the client system.

The uemcli command also operates the certificates in the local lockbox of the client system.

The certificate is set to expire after three years; however, the storage system regenerates the certificate one month before its expiration date.

See Unity Family Security Configuration Guide for information about the Storage system certificate.

Affected Products

Dell EMC Unity, Dell Unity 300, Dell EMC Unity 300F, Dell EMC Unity 350F, Dell EMC Unity 400, Dell EMC Unity 400F, Dell EMC Unity 450F, Dell EMC Unity 500, Dell EMC Unity 500F, Dell EMC Unity 550F

Products

Dell EMC Unity XT 380, Dell EMC Unity XT 380F, Dell EMC Unity XT 480, Dell EMC Unity XT 480F, Dell EMC Unity 600, Dell EMC Unity 600F, Dell EMC Unity 650F, Dell EMC Unity XT 680, Dell EMC Unity XT 680F, Dell EMC Unity XT 880, Dell EMC Unity XT 880F , Dell EMC Unity Family |Dell EMC Unity All Flash, Dell EMC Unity Family, Dell EMC Unity Hybrid, Dell EMC UnityVSA Professional Edition/Unity Cloud Edition ...
Article Properties
Article Number: 000196041
Article Type: Solution
Last Modified: 29 May 2025
Version:  8
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.