Symptoms:
In FIPS enabled deployment, vracli vro register/unregister commands fail with the following exceptions:
java.security.NoSuchAlgorithmException: SSL SSLContext not available.
VMware vRealize Automation 8.x
VMware vRealize Orchestrator 8.x
vracli vro vcoin commands do not properly work with FIPS enabled properties.
This issue is resolved in Aria Orchestrator 8.12 and above.
Workaround:
<extension>
<description>
<label>VMware vRealize Orchestrator Plugin</label>
<summary>VMware vRealize Orchestrator Plugin for vSphere Web Client</summary>
</description>
<key>com.vmware.o11n.vcoin.next</key>
<company>VMware, Inc.</company>
<version>1.0.0</version>
<server>
<url>https://vRO-Hostname/vcoin/plugin.json</url>
<description>
<label>VMware vRealize Orchestrator Plugin</label>
<summary>VMware vRealize Orchestrator Plugin for vSphere Web Client</summary>
</description>
<company>VMware, Inc.</company>
<type>MANIFEST_SERVER</type>
<adminEmail>noreply@vmware.com</adminEmail>
<serverThumbprint>vRO SHA-1 thumbprint</serverThumbprint>
</server>
<client>
<version>1.0.0</version>
<description>
<label>VMware vRealize Orchestrator Plugin</label>
<summary>VMware vRealize Orchestrator Plugin for vSphere Web Client</summary>
</description>
<company>VMware, Inc.</company>
<type>vsphere-client-remote</type>
<url>https://vRO-Hostname/vcoin/plugin.json</url>
</client>
<lastHeartbeatTime>1970-01-01T00:00:00Z</lastHeartbeatTime>
</extension>
vracli dev psql vco-db
insert into vmo_vcoinextensionrecord values('unique-id', 'vCenter-hostname', 'vCenter-guid');
Replace the following placeholders:
unique-id
: Any unique string for the table (e.g., 'id-123456').vCenter-hostname
: The hostname for the vCenter (e.g., 'vcenter-test.eng.vmware.com').vCenter-guid
: The GUID of the vCenter (e.g., '03426901-6216-4c81-8a3a-0e01f0bad9fb').Impact/Risks:
You are unable to register/unregister vCOIN plugin extension with vCenter.