Troubleshooting the workflow Add a PowerShell host in VMware Aria Automation Orchestrator
search cancel

Troubleshooting the workflow Add a PowerShell host in VMware Aria Automation Orchestrator

book

Article ID: 326016

calendar_today

Updated On:

Products

VMware Aria Suite

Issue/Introduction

Requirements

  1. Configuring WinRM: HTTP or HTTPs are supported.
  2. Configure Kerberos Authentification
  3. Run the workflow Add a PowerShell Host

Optionally, you can integrate the PowerShell plug-in with vSphere PowerCLI and vCenter  PowerCLI Integration with the PowerShell Plug-In


Symptoms:

The workflow Add a PowerShell host fails with the error Cannot Locate KDC (Dynamic Script Module name: addPowerShellHost#30).


Environment

VMware Aria Automation Orchestrator 8.x

Cause

This issue is most commonly a misconfiguration of the PowerShell host, or the steps suggested to run the workflow were not completed properly.

Resolution

  1. If Kerberos Authentification is being used validate that a Fully Qualified Domain Name is being used in the Host/IP field, as indicated on step 5 of Add a PowerShell Host image.png
  2. The username format should be in username@domain, instead of Domain\username
  3. If your appliance is a 3-node cluster, validate that the file /data/vco/usr/lib/vco/app-server/conf/krb5.conf is the same on all the nodes. 
  4. SSH to your appliance and validate you can ping the FQDN of the PowerShell host.
  5. Run the following command in order to get the pod ID of one of the VMware Aria Automation Orchestrator pods titled vco. 
    kubectl get pods -n prelude | grep vco
  6. Using one of the vco pod IDs, connect and validate you can ping the FQDN of the PowerShell host. 
    kubectl exec -it ID1 -c vco-server-app -n prelude -- /bin/bash
ping ID2
exit
    Where:
  • ID1 is the VCO id obtained in step 5 vco-app-yyyyyyyy-xxxx
  • ID2 is the PowerShell host FQDN.
  1. If the pings are not successful validate your network connectivity and DNS service availability.
  2. Additional troubleshooting documentation:
  3. If the issue persists, file a Service Request with Global Support after gathering the below information.
    • Validate if any errors within the PowerShell host are recorded in the Windows Event Viewer under System.image.png
    • Enable Kerberos Debug Logging
    • Run the following commands on the PowerShell host: 
      winrm get winrm/config/service
winrm get winrm/config/client
winrm quickconfig
winrm e winrm/config/listener
Note: When initially configuring the host, you may try using winrm quickconfig as a starting point.
  • Run the following command in the VMware Aria Orchestrator appliance. 
    cat /data/vco/usr/lib/vco/app-server/conf/krb5.conf


Powered by Wolken Software