No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


Alarm Handling

AR100, AR120, AR160, AR1200, AR2200, AR3200, and AR3600 V300R003

This document provides the trap description, attributes, parameters, impact on the system, possible causes, procedures, and references. This document provides a complete set of traps, through which intended readers are kept of the running status of the device so as to locate faults.

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
PKI_1. hwPKIUpdateLocalCertFailScep

PKI_1. hwPKIUpdateLocalCertFailScep


PKI/4/PKIUPDATELOCALCERTFAILSCEP: OID [OID] Updating the local certificate through SCEP failed. (LocalCertIssuer=[LocalCertIssuer], LocalCertSubject=[LocalCertSubject])

The local certificate failed to be updated through SCEP.


Alarm ID Alarm Severity Alarm Type Warning communicationsAlarm


Name Meaning
OID Indicates the MIB object ID of the alarm.
LocalCertIssuer Indicates the issuer of the local certificate.
LocalCertSubject Indicates the subject of the local certificate.

Impact on the System

The certificate may be unavailable.

Possible Causes

  • There is no reachable route between the device and CA server.
  • The PKI configurations of the device and CA server are incorrect.
  • The CA server is faulty.


  1. Run the ping command to check whether there is a reachable route between the device and CA server.

    If not, check the route and link to ensure that there is a reachable route between the device and CA server.

  2. Run the display pki realm command to check whether the PKI configurations of the device and CA server are correct. The PKI configurations include the CA server URL, CA name, digest algorithm used to sign certificate enrollment requests, challenge password used in SCEP certificate application, and CA certificate digital fingerprint.

    If not, ensure that the PKI configurations are correct.

  3. Check whether the CA server is working properly.

    If not, ensure that the CA server is working properly.

  4. Collect alarm and configuration information, and contact technical support personnel.
Updated: 2019-03-06

Document ID: EDOC1100041475

Views: 101296

Downloads: 61

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Previous Next