Update the trust between vRealize Automation and vRealize Orchestrator Replica Nodes
Article ID: 325898
Updated On:
Products
VMware Aria Suite
Issue/Introduction
Symptoms:
- The Control Center "Validate Configuration" returns: "Validation of Orchestrator server SSL certificate failed".
- The old Orchestrator server SSL certificate within Control Center > Certificates > Trusted Certificates page still exists
Environment
VMware vRealize Automation 7.x
Cause
The procedure within the vRealize documentation to update the embedded vRealize Orchestrator trust after replacing the vRealize Automation certificates doesn't update the trust on the Orchestrator Replica nodes.
https://docs.vmware.com/en/vRealize-Automation/7.6/com.vmware.vra.prepare.use.doc/GUID-CD4AC8E0-168C-43A9-99A1-64C30A5776F8.html
https://docs.vmware.com/en/vRealize-Automation/7.6/com.vmware.vra.prepare.use.doc/GUID-CD4AC8E0-168C-43A9-99A1-64C30A5776F8.html
Resolution
Currently, there is no resolution for this issue. Please see the workaround below.
Workaround:
Workaround:
- For each replica node, login to Control Center and manually import the new Orchestrator server SSL certificate.
- Navigate to Control Center > Certificates > Trusted Certificates and delete any records of the old Orchestrator server SSL certificate.
- Stop the Orchestrator Control Center service on all vRealize Automation nodes.
service vco-configurator stop
- Run the command below on one of the vRealize Automation nodes:
var/lib/vco/tools/configuration-cli/bin/vro-configure.sh controlcenter-update
- Start the Orchestrator Control Center service on all vRealize Automation nodes.
service vco-configurator start
- Validate the Orchestrator server SSL certificates in Control Center for each replica node.
Feedback
Yes
No
Powered by
