SSMC recommended versions do not appear in FIPS mode

Symptom

This issue occurs because when HPE InfoSight certificate is not installed on SSMC. HPE InfoSight certificate can be installed by providing the certificate while configuring HPE InfoSight under settings. However the user or array administrator may not intend to use HPE InfoSight feature, so HPE InfoSight is not enabled. However administrator or user would like to see recommended versions information.

Solution 1
Action

Provide HPE InfoSight certificate in HPE InfoSight configuration. Download the HPE InfoSight certificate. Use this certificate in SSMC for HPE InfoSight configuration. To download HPE InfoSight certificate, follow the steps:

  1. Download HPE InfoSight Certificate.
  2. To launch connectivity between SSMC and HPE InfoSight follow the steps:
    1. Log in to Primera & 3PAR SSMC.
    2. Navigate to GENERAL > Settings.
    3. Edit HPE InfoSight.
      NOTE:

      Edit Global Settings wizard opens.

    4. Select HPE InfoSight, from the View dropdown.
    5. Enter User name.
    6. Enter Password.
    7. Enter the HPE InfoSight Certificate into the certificate box.
    8. Click OK.

    The recommended version appears after 24 hours in SSMC.

Solution 2
Action
Importing HPE InfoSight certificate into the appliance manually. Copy the downloaded HPE InfoSight certificate to any directory in SSMC appliance, for example: <infosight cert location>. Use the following command to configure HPE InfoSight certificate manually: 
cd /opt/hpe/ssmc/ssmcbase/data/StoreServMC/infoSight
cp <infosight cert location> infosight.cer
/opt/hpe/ssmc/ssmcbase/fips/jre/bin/keytool -genkey -keyalg RSA -alias infosight -keystore INFOSIGHT-MC-TrustStore -storepass
infosighttruststorepass -keypass infosighttruststorepass -dname "CN=hpe.com, OU=HPE, O=HPE, L=Palo Alto, S=CA, C=US"
/opt/hpe/ssmc/ssmcbase/fips/jre/bin/keytool -import -alias infosight1 -file infosight.cer -keystore INFOSIGHT-MC-TrustStore
-storepass infosighttruststorepass -noprompt
/opt/hpe/ssmc/ssmcbase/fips/jre/bin/keytool -provider org.bouncycastle.jcajce.provider.BouncyCastleFipsProvider -providerpath
/opt/hpe/ssmc/ssmcbase/bcFipsJars/bc-fips-1.0.1.jar -importkeystore -srckeystore INFOSIGHT-MC-TrustStore -destkeystore
INFOSIGHT-MC-TrustStore.bcfks -srcstoretype JKS -deststoretype BCFKS -srcstorepass infosighttruststorepass
-deststorepass infosighttruststorepass -noprompt
rm INFOSIGHT-MC-TrustStore
mv INFOSIGHT-MC-TrustStore.bcfks INFOSIGHT-MC-TrustStore
rm infosight.cer
NOTE:

Use SFTP tool to copy the HPE InfoSight certificate to appliance.