HCX failed to deploy NE and reported the error message below when resyncing the service mesh:
Validate RemoteService Mesh failed. Interconnect Service Workflow ValidateRemoteServiceMesh failed. Error: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuildingException: unable to find valid certification path to requested target.
Re Authenticating: The NSX manager failed with the error - "Untrusted SSL," and logs show the following error:
/common/logs/appliance-management/appliance-management.log
06:58:28.570 [main] ERROR com.vmware.hybridity.admin.config.ApplianceConfigValidator - Unable to verify the endpoint link details for https://<NSX Manager FQDN>
com.vmware.vchs.hybridity.adapters.https.UntrustedCertificateException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target.
VMware HCX
VMware NSX
1. Check the NSX-T manager sha256 cert fingerprint via a web browser
2. Navigate to the HCX Manager Admin UI page (https://<HCX-IP>:9443) > Administration > Certificate > Trusted CA Certificate
. Verify the trusted NSX-T manager cert is correct.
Re-import the newly updated NSX Manager certificate.
https://hcx-ip-or-fqdn:9443
.