The HTTPS service automatically restarts when modifying authentication policy and password complexity configuration.
search cancel

The HTTPS service automatically restarts when modifying authentication policy and password complexity configuration.

book

Article ID: 380208

calendar_today

Updated On:

Products

VMware NSX VMware NSX-T Data Center

Issue/Introduction

  • The HTTPS service automatically restarts when trying to modify the following properties by calling "PUT /api/v1/node/aaa/auth-policy".
    • api_max_auth_failures
    • api_failed_auth_reset_period
    • api_failed_auth_lockout_period

  • NSX Manager cluster may show as degraded.
  • Status of HTTPS will show down on NSX UI

  • Logs will show the HTTPS service restarted: 

    2021-12-07T04:40:11.865Z ##########02 NSX MONITORING [nsx "nsx-manager" eventFeatureName="clustering" eventSev="warning" eventState="On" eventType="cluster_degraded" level="WARNING" subcomp="cbm"] Group member 232c###-#########-#### of service HTTPS is down.

Environment

VMware NSX-T Data Center

VMware NSX

Cause

This is not an issue, and is expected behavior. 

If any of api_max_auth_failures, api_failed_auth_reset_period, or api_failed_auth_lockout_period are modified, the http service is automatically restarted.

Please see Broadcom API documentation for more details:

NSX-T Data Center REST API

Resolution

This is expected behavior. Currently there is no resolution.

Powered by Wolken Software