After upgrading vCenter, "Alarm 'Host error' on HOST_NAME changed from Green to Yellow" is triggered
search cancel

After upgrading vCenter, "Alarm 'Host error' on HOST_NAME changed from Green to Yellow" is triggered

book

Article ID: 381073

calendar_today

Updated On:

Products

VMware vSphere ESXi 7.0 VMware vCenter Server 7.0

Issue/Introduction

Within VC Events, Alert is triggered:

Alarm 'Host error' on ESXi_HOST_NAME changed from Green to Yellow

Within the logs, similar messages as the following are found:

vCenter Event shown in journalctl log file:

Event [59262168] [1-1] [<YYYY-MM-DD>T<time>] [vim.event.GeneralHostWarningEvent] [warning] [] [DC_NAME] [59262168] [Issue detected on ESXi_HOST_NAME in DC_NAME: Attempting to install an image profile bypassing signing and acceptance level verification. This may pose a large securit (<YYYY-MM-DD>T<time> cpu39:3744933)]
Event [59262171] [1-1] [<YYYY-MM-DD>T<time>] [vim.event.AlarmStatusChangedEvent] [info] [] [DC_NAME] [59262171] [Alarm 'Host error' on ESXi_HOST_NAME changed from Green to Yellow]

/var/log/hostd.log on the host

info hostd[2100413] [Originator@6876 sub=Vimsvc.ha-eventmgr] Event 4994 : Issue detected on ESXi_HOST_NAME in ha-datacenter: Attempting to install an image profile bypassing signing and acceptance level verification. This may pose a large securit (<YYYY-MM-DD>T<time> cpu39:3744933)
info hostd[2100425] [Originator@6876 sub=Vimsvc.ha-eventmgr] Event 4995 : SECURITY ALERT: Installing image profile '(Updated) ESXi-<Build>-standard' with acceptance level checking disabled.

/var/logesxupdate.log on the host

esxupdate: 3744933: HostImage: WARNING: SECURITY ALERT: Installing image profile '(Updated) ESXi-<Build>-standard' with acceptance level checking disabled.
esxupdate: 3744933: vmware.runcommand: INFO: runcommand called with: args = '['/usr/lib/vmware/vob/bin/addvob', 'vob.user.esximage.install.securityalert', '(Updated) ESXi-<Build>-standard', 'acceptance level checking disabled']', outfile = 'None', returnoutput = 'True', timeout = '0.0'.

Environment

VMware vCenter Server 7.0
VMware vSphere ESXi 7.0
VMware vCenter Server 8.0
VMware vSphere ESXi 8.0

Cause

This event occurs because updating vCenter Server also updates the FDM VIB (Fault Domain Manager, vSphere HA module) on the ESXi host, intentionally bypassing the acceptance level verification. As a result, a 'SECURITY ALERT' may be triggered.

Resolution

This message does not indicate a problem and can be ignored safely.

Powered by Wolken Software