• A product certificate was replaced using the Day 2 option in Aria Suite Lifecycle.
• The replacement was successful, and the new certificate was displayed correctly in the Aria Suite Lifecycle UI.
• An inventory sync on the same product was then performed successfully.
• After the inventory sync, the Aria Suite Lifecycle UI reverted to showing the old certificate.
• In /var/log/vrlcm/vmware_vrlcm.log you see the below errors

  • 2024-06-24 09:08:00.464 INFO  [pool-3-thread-16] c.v.v.l.l.s.p.CertificateStoreService -  -- Certificate not present in Locker with SHA256 value. Try with SHA1 value.
    2024-06-24 09:08:00.465 INFO  [pool-3-thread-16] c.v.v.l.l.s.p.CertificateStoreService -  -- Certificate not present in Locker.
    2024-06-24 09:08:00.465 INFO  [pool-3-thread-16] c.v.v.l.d.c.t.i.CreateEnvironmentInventoryUpdateTask -  -- Inside original certificate
    2024-06-24 09:08:00.466 INFO  [pool-3-thread-16] c.v.v.l.d.c.t.i.CreateEnvironmentInventoryUpdateTask -  -- Certificate not present in Locker with SHA256 value. Try with SHA1 value.
    2024-06-24 09:08:00.466 WARN  [pool-3-thread-16] c.v.v.l.d.c.t.i.CreateEnvironmentInventoryUpdateTask -  -- Failed to get certificate reference from locker using certificate chain: Certificate with fingerprint (sha256) 'XXxxxxxxxxxxxxxxxxxxxxXXXXXXXXXXXXXXXXXXxxxx' does not exist.

Aria Suite Lifecycle 8.8 and above

This was due to Hashing algorithm changed from SHA256 to SHA1 in Aria Suite Lifecycle 8.8. While a fix was included in Aria Suite Lifecycle 8.10, it unfortunately didn't address existing certificates

1. From the locker
   1. Download the new certificate
   2. Delete the same certificate
   3. Import the same certificate back
2. Run a inventory sync on the affected product after which you can see the UI will show the Correct(new) certificate associated with the product