Symptoms:
2019-01-16 18:53:29.065 DEBUG - [########-####-####-####-########ec62] [health-check-2] c.v.h.c.peer.client.PeerHealthMonitor : Checking connection to peer LocalSite (null, https://192.168.1.51:8046)
2019-01-16 18:53:29.179 DEBUG - [########-####-####-####-########ec62] [health-check-2] c.v.h.c.peer.client.PeerHealthMonitor : Peer RemoteSite can talk back to us: {}
2019-01-16 18:53:30.459 WARN - [########-####-####-####-########26ea] [c4-scheduler-2] c.v.r.health.HealthCheckingFactory : Resource is broken: Vcloud{site='RemoteSite', description='', defaultSite=true, lsUrl='https://RemoteSite.cloud.local:443/lookupservice/sdk', lsThumbprint='SHA-2##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:2A:38:E8', ssoUser='cloud\admin', ssoPassword=[censored], vcdUrl='https://vcd.cloud.local:443/api', vcdThumbprint='SHA-2##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:C6:36:87', vcdSystemUser='administrator@system', vcdSystemPassword=[censored]}
com.vmware.vcloud.client.exception.VcloudException: (Major code = 403, minor code = ACCESS_TO_RESOURCE_IS_FORBIDDEN) - Access is forbidden
...
2019-01-17 12:05:09.170 WARN - [UI_/portal/sites_########-####-####-####-########842c_8s] [job-16] o.h.engine.jdbc.spi.SqlExceptionHelper : SQL Error: 0, SQLState: 23505
2019-01-17 12:05:09.171 ERROR - [UI_/portal/sites_########-####-####-####-########842c_8s] [job-16] o.h.engine.jdbc.spi.SqlExceptionHelper : ERROR: duplicate key value violates unique -01-17 12:05:09.171 INFO - [UI_/portal/sites_########-####-####-####-########842c_8s] [job-16] o.h.e.j.b.internal.AbstractBatchImpl : HHH000010: On release of batch it still contained JDBC statements
2019-01-17 12:05:09.173 ERROR - [UI_/portal/sites_########-####-####-####-########842c_8s] [job-16] com.vmware.h4.jobengine.JobExecution : Task ########-####-####-####-########ddcc (WorkflowInfo{type='pair', resourceType='site', resourceId='RemoteSite', isPrivate=false, resourceName='null'}) has failed
com.vmware.h4.cloud.api.exceptions.SiteThumbprintInUseException: The peer site can not be added, because the given thumbprint is already used by another site.
2024-05-27 22:47:09.298 WARN - [UI-########-####-####-####-########09cb-r1241-uO] [job-77] com.vmware.h4.cloud.peer.job.PairJob : Unexpected exception while connecting to ExampleSite
com.vmware.h4.api.error.exceptions.PermissionDeniedException: Permission denied.
...
VMware vCloud Availability 3.0.x
VMware vCloud Availability 3.5.x
VMware Cloud Director Availability 4.x
This issue will occur when the same certificate is in use on both the local and remote cloud sites. As a result, the local site tries to pair with the remote site and detects that the remote server has the same certificate as its own.
Alternatively, the issue can occur if one of the cloud sites is already paired with a site that is configured with the same certificate as the site being newly paired. For example, cloud Site1 and cloud Site2 are being paired, but Site2 is already paired with cloud Site3 that possesses the same cloud certificate as Site1.
This is an expected behaviour when multiple sites share the same certificate.
To resolve this issue, configure each site with an unique cloud certificate.