The NSX Application Platform cluster is disconnected from the NSX management cluster.

search cancel

The NSX Application Platform cluster is disconnected from the NSX management cluster.

book

Article ID: 377378

calendar_today

Updated On:

Products

VMware vDefend Firewall with Advanced Threat Prevention

Issue/Introduction

-- You will see alarm on NSX Manager UI similar to

The NSX Application Platform cluster xxxxxx-xxxx-xxxx is disconnected from the NSX management cluster.

Check whether the manager cluster certificate, manager node certificates, kafka certificate and ingress certificate match on both NSX Manager and the NSX Application Platform cluster. Check expiration dates of the above mentioned certificates to make sure they are valid. Check the network connection between NSX Manager and NSX Application Platform cluster and resolve any network connection failures.

-- You will see all the pods are running and all the nodes are ready on guest cluster.
napp-k get pods -A
napp-k get nodes

Environment

NSX Application Platform 4.2

NSX-T 3.2.3

Cause

-- This can happen, when NAPP has been upgraded and NSX manager and trust manager on NAPP is not in sync.

Resolution

To resolve this issue restart proton on all NSX manager, which will force full sync. Give a few minutes for common agent to full sync, and then restart auth server on NAPP side. This will resync the certificates from trust manager.

SSH to NSX manager as root,

systemctl restart proton
napp-k get pods | grep authserver
napp-k delete pod authserver-<podname>

Feedback

thumb_up Yes

thumb_down No