NAPP deployment has failed at activate supervisor cluster step
search cancel

NAPP deployment has failed at activate supervisor cluster step

book

Article ID: 379723

calendar_today

Updated On:

Products

VMware vSphere Kubernetes Service VMware vDefend Firewall with Advanced Threat Prevention

Issue/Introduction

Deploying NAPP deployment it gets stuck at activate supervisor cluster step with the error timeout exceeded error.

On vCenter UI Supervisor cluster is in Configuration Status and the Supervisors Control Planes nodes are invalid. Kubernetes status has an error: Resource Type Deployment, Identifier vmware-system-netop/vmware-system-netop-controller-manager is not found.

 

 

Cause

It indicates a network/routing problem. There may be wrong routes towards the CP VMs within the network or Network Firewall could be blocking the communication between vCenter and Supervisor Cluster Nodes.

You can test these ports to verify connectivity for this step, from vCenter:

nc -zv <control-plane-node-ip> 6443
nc -zv <control-plane-node-ip> 10250
nc -zv <control-plane-node-ip> 443

and

curl -v telnet:<control-plane-node-ip>:6443
curl -v telnet:<control-plane-node-ip>:10250
curl -v telnet:<control-plane-node-ip>:443

and verify the routes with 

traceroute <control-plane-node-ip>

Also attempt to reboot the controlplane VM, this can also happen if the initial arp entry was not created correctly in the network devices, and a reboot of the VM triggers a new ARP entry.

Use this link to know the needed ports: https://ports.esp.vmware.com/home/vSphere

Resolution

Open Firewall communication between vCenter Server and Control Plane Nodes.

 

 

Powered by Wolken Software