Applying vCenter Server 6.7 Update 3v patch on VMware Cloud Foundation for VCF 3.x releases.
search cancel

Applying vCenter Server 6.7 Update 3v patch on VMware Cloud Foundation for VCF 3.x releases.

book

Article ID: 378766

calendar_today

Updated On:

Products

VMware SDDC Manager

Issue/Introduction

The purpose of this article is to provide guidance to upgrade vCenter Server appliance.

VCF affected Versions : All VCF 3.x versions

The information contained in this article applies to both VCF on Dell VxRail environments and vSAN Ready Nodes environments.


NOTE: Prior to initiating any upgrades, please review KB 95536 and implement the corrective action.

As documented in VMSA-2024-0019, all versions of the vCenter Server 6.7 appliance that are prior to vCenter Server 6.7 Update 3v are affected by the vulnerabilities listed in the advisory
Also, all VMware Cloud Foundation(VCF) 3.x versions are similarly impacted by the vulnerabilities listed in the advisory.

Environment

VMware vCenter Server 6.7.x
VMware Cloud Foundation 3.10.x
VMware Cloud Foundation 3.11

Resolution

All the documented security issues are resolved in VMware vCenter Server 6.7 Update 3v.

 

VMware Cloud Foundation Version Upgrade Options
Prior to 3.11.x  Upgrade to 3.11 or later and apply the steps in the Workaround section of this article
3.11.x   Apply the steps in the Workaround section of this article


Workaround:

STEP 1: Perform below steps on each VMware vCenter Server VM and each External PSC deployed in your VMware Cloud Foundation environment 

Powered off concurrent snapshots should be taken of all PSC's and VC's in the SSO domain prior to patching.

Apply the VMware vCenter server 6.7 Update 3t patch available at the vCenter Server 6.7 Update 3v page to all external PSCs and vCenter Servers (Management & VI Domain) in the environment.

STEP 2: Perform below steps on each SDDC Manager VM deployed in your Cloud Foundation environment

  1. Download the script attached to this KB postUpgradeRemediation_VCF3x.py
  2. Copy the script to /home/vcf folder in SDDC Manager VM
  3. Login to SDDC Manager using vcf user, su to root
  4. Give execute permissions to the script.
          
    chmod +rwx /home/vcf/postUpgradeRemediation_VCF3x.py
  5. Run the script:/home/vcf/postUpgradeRemediation_VCF3x.py       

Script would validate if all your PSC's/VC's are upgraded to target version and exit                   

Note: Every time a new VI workload domain is created, both these steps need to be performed.
        

Attachments

postUpgradeRemediation_VCF3x.py get_app