Connection to console.cloud.vmware.com from vRealize Orchestrator 7.6 fails
search cancel

Connection to console.cloud.vmware.com from vRealize Orchestrator 7.6 fails

book

Article ID: 315496

calendar_today

Updated On:

Products

VMware Aria Suite

Issue/Introduction

Symptoms:

When attempting to import the certificate, the control center shows:

Error! IOException, Message: ‘Received fatal alert: handshake_failure’

Configuration logs show:

2023-12-21 11:53:19.397+0000 [http-nio-127.0.0.1-8282-exec-5] INFO {} [CertificateHelper] Normal Ssl Certificate getter failed to fetch the remote host certificates: url='https://console.cloud.vmware.com/', proxyUrl='null', proxyPort='-1'.Initiating get of the remote host certificates by SMTP STARTTLS protocol.
2023-12-21 11:53:19.397+0000 [http-nio-127.0.0.1-8282-exec-5] WARN {} [CertificateHelper] Get of the remote host certificates by using SMTP STARTTLS protocol failed.
2023-12-21 11:53:19.397+0000 [http-nio-127.0.0.1-8282-exec-5] WARN {} [TrustCertificateAction] Cannot init trust certificate action.java.net.SocketException: Network is unreachable (connect failed)


Environment

VMware vRealize Orchestrator 8.x

Cause

console.cloud.vmware.com can require that SNI is enabled.

Resolution

SNI must be enabled in two places for vRO 7.6:

In both /usr/lib/vco/app-server/bin/setenv.sh and /usr/lib/vco/configuration/bin/setenv.sh find -Djsse.enableSNIExtension=false and change it to -Djsse.enableSNIExtension=true.


Additional Information

Impact/Risks:

Take backups before editing the configuration.


Powered by Wolken Software