Deleting a VI workload domain in VMware Cloud Foundation 3.0 fails when the workload domain is enabled for vRealize Operations monitoring
search cancel

Deleting a VI workload domain in VMware Cloud Foundation 3.0 fails when the workload domain is enabled for vRealize Operations monitoring

book

Article ID: 316773

calendar_today

Updated On:

Products

VMware Cloud Foundation

Issue/Introduction

Symptoms:
  • Deleting a VI workload domain in VMware Cloud Foundation 3.0 fails when the workload domain is enabled for vRealize Operations monitoring
  • The original SSL certificate in use for vRealize Operations has been replaced.
  • You see messages similar to the following in the /var/log/vmware/vcf/domainmanager/domainmanager.log file on the SDDC Manager VM:
2018-08-29 05:54:27.382 [Executor-2] INFO [ c.v.e.s.c.v.vrlcm.service.VrlcmResponseUtil] <d257ac40-ab4e-11e8-959a-b539cf0a8aae> Error cause raw is [{"messageId":"LCMVROPSYSTEM25000","message":"VROps connection failure. Either IP is not accessible or some network issue","eventId":"ad3df9b3-0051-4f62-a377-cea09317f930","retry":true,"exceptionMessage":"handshake alert: unrecognized_name","exceptionStackTrace":"javax.net.ssl.SSLProtocolException: handshake alert: unrecognized_name\n\tat sun.security.ssl.ClientHandshaker.handshakeAlert(ClientHandshaker.java:1542)\n\tat

2018-08-29 05:54:27.382 [Executor-2] INFO [ c.v.e.s.c.v.vrlcm.service.VrlcmServiceImpl] <d257ac40-ab4e-11e8-959a-b539cf0a8aae> Returned request progress details status = FAILED request ID = a90df022a0a848755748c9037c5fa
2018-08-29 05:54:27.382 [Executor-2] ERROR [c.v.evo.sddc.vrealize.vrops.DeleteVCenterAdapter] <d257ac40-ab4e-11e8-959a-b539cf0a8aae> Failed to configure vROps vrops-lb.vrack.vcf.local endpoint, because {
  "messageId": "LCMVROPSYSTEM25000",
  "message": "VROps connection failure. Either IP is not accessible or some network issue",
  "retry": true,
  "exceptionMessage": "handshake alert: unrecognized_name"
}
2018-08-29 05:54:27.382 [Executor-2] ERROR [c.v.evo.sddc.vrealize.vrops.DeleteVCenterAdapter] <d257ac40-ab4e-11e8-959a-b539cf0a8aae> Failed to delete vCenter adapter VI-DOMAIN-TEST-VC.vrack.vcf.local from vROps vrops-lb.vrack.vcf.local
com.vmware.evo.sddc.common.services.vrops.util.VropsConfigurationException: Failed to configure vROps vrops-lb.vrack.vcf.local endpoint, because {
  "messageId": "LCMVROPSYSTEM25000",
  "message": "VROps connection failure. Either IP is not accessible or some network issue",
  "retry": true,
  "exceptionMessage": "handshake alert: unrecognized_name"
}

Note: The preceding log excerpts are only examples. Date, time, and environmental variables may vary depending on your environment.


Resolution

This is a known issue affecting VMware Cloud Foundation 3.0. There is currently no resolution.

Workaround:
Use the following steps to workaround this issue:
  1. On the SDDC Manager VM, issue the lookup_passwords command to obtain the password for the root account on the vRealize Suite Lifecycle Manager VM.
  2. SSH to the vRealize Suite Lifecycle Manager VM.
  3. Issue the following command to make a copy of the /usr/share/tomcat/bin/catalina.sh file:
cp /usr/share/tomcat/bin/catalina.sh /tmp/
  1. Open the /usr/share/tomcat/bin/catalina.sh file with a text editor.
  2. Find the line that begins with JAVA_OPTS=“$JAVA_OPTS and add the following immediately after $JAVA_OPTS:
-Djsse.enableSNIExtension=false
 
Note: This entry should now begin with JAVA_OPTS="$JAVA_OPTS -Djsse.enableSNIExtension=false
  1. Restart the vlcm-server service by issuing the following command:
systemctl restart vlcm-server

Note: The failed workload domain deletion workflow can be restarted at this point and should complete successfully.

Additional Information

To be alerted when this article is updated, click the Subscribe to Article link in the Actions box.

Powered by Wolken Software