Deactivating all async patches in SDDC manager fails with FAILED_TO_ACCESS_KNOWN_HOSTS

search cancel

Deactivating all async patches in SDDC manager fails with FAILED_TO_ACCESS_KNOWN_HOSTS_FILE.

book

Article ID: 382883

calendar_today

Updated On:

Products

VMware Cloud Foundation 5.x

Issue/Introduction

Deactivating all async patches on the system that were previously enabled by running disableAllPatches fails.

async_patch_tool.log

YYYY-MM-DD HH:MM:SS [ERROR] Error while initiating required functionality: DISABLE_ALL_PATCHES
YYYY-MM-DD HH:MM:SS [ERROR] FAILED_TO_ACCESS_KNOWN_HOSTS_FILE
Error Message: Failed to access the known hosts file. Permission denied
Remedy: Please ensure the known hosts file path known_hosts is valid and can be accessed by vcf user. Refer to the AP tool logs for further debugging.

Environment

VMware Cloud Foundation 5.x

Cause

This issue caused by incorrect file permissions.

Resolution

1. Take a snapshot of SDDC manager.

2. Update the permissions:

ssh to the SDDC manager using vcf account and then switch to su root

chmod 644 /root/.ssh/known_hosts
chown root:root /root/.ssh/known_hosts
chmod 644 /etc/vmware/vcf/commonsvcs/known_hosts
chown vcf_commonsvcs:vcf /etc/vmware/vcf/commonsvcs/known_hosts
chmod 644 /home/vcf/.ssh/known_hosts
chown vcf:vcf /home/vcf/.ssh/known_hosts
chmod 644 /opt/vmware/vcf/commonsvcs/defaults/hosts/known_hosts
chown vcf_commonsvcs:vcf /opt/vmware/vcf/commonsvcs/defaults/hosts/known_hosts

3. Reboot the SDDC manager.

4. Disable async patches.

./vcf-async-patch-tool -disableAllPatches --sddcSSOUser [email protected] --sddcSSHUser vcf

Feedback

thumb_up Yes

thumb_down No