Unable to configure a Microsoft Certificate Authority in SDDC Manager
search cancel

Unable to configure a Microsoft Certificate Authority in SDDC Manager

book

Article ID: 383111

calendar_today

Updated On:

Products

VMware SDDC Manager

Issue/Introduction

Symptoms:

 

  • When attempting to configure a Microsoft Certificate Authority (CA) from the SDDC manager UI the screen becomes stuck with a spinning progress wheel, preventing any further action.

  • Trying to apply the configuration using the MicrosoftCertificateAuthoritySpec API returns an error.

  • An attempt to delete any prior configuration through the API using KB article 379544 does not resolve the issue.

  • SDDC manager logs contains errors similar to the excerpt below:

    WARN  [vcf_om,673f23720454ed9514610963071a19f5,03ed] [o.h.e.jdbc.spi.SqlExceptionHelper,om-exec-16] SQL Error: 0, SQLState: 42P01
    ERROR [vcf_om,673f23720454ed9514610963071a19f5,03ed] [o.h.e.jdbc.spi.SqlExceptionHelper,om-exec-16] ERROR: relation "certificate_chain_expiry_seq" does not exist
      Position: 16
    ERROR [vcf_om,673f23720454ed9514610963071a19f5,03ed] [c.v.v.c.s.e.UpdateCertificateExpiryService,om-exec-16] Failed to update the certificate expiry cache could not extract ResultSet [ERROR: relation "certificate_chain_expiry_seq" does not exist
      Position: 16] [select nextval('certificate_chain_expiry_seq')]; SQL [select nextval('certificate_chain_expiry_seq')]
    org.springframework.dao.InvalidDataAccessResourceUsageException: could not extract ResultSet [ERROR: relation "certificate_chain_expiry_seq" does not exist
      Position: 16] [select nextval('certificate_chain_expiry_seq')]; SQL [select nextval('certificate_chain_expiry_seq')]
            at org.springframework.orm.jpa.vendor.HibernateJpaDialect.convertHibernateAccessException(HibernateJpaDialect.java:256)
            at org.springframework.orm.jpa.vendor.HibernateJpaDialect.translateExceptionIfPossible(HibernateJpaDialect.java:229)
            at org.springframework.orm.jpa.AbstractEntityManagerFactoryBean.translateExceptionIfPossible(AbstractEntityManagerFactoryBean.java:550)
            at org.springframework.dao.support.ChainedPersistenceExceptionTranslator.translateExceptionIfPossible(ChainedPersistenceExceptionTranslator.java:61)
            at org.springframework.dao.support.DataAccessUtils.translateIfNecessary(DataAccessUtils.java:243)
            at org.springframework.dao.support.PersistenceExceptionTranslationInterceptor.invoke(PersistenceExceptionTranslationInterceptor.java:152)
            at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:184)
            at org.springframework.data.jpa.repository.support.CrudMethodMetadataPostProcessor$CrudMethodMetadataPopulatingMethodInterceptor.invoke(CrudMethodMetadataPostProcessor.java:164)
    ..
    Caused by: org.hibernate.exception.SQLGrammarException: could not extract ResultSet [ERROR: relation "certificate_chain_expiry_seq" does not exist
      Position: 16] [select nextval('certificate_chain_expiry_seq')]

Environment

SDDC Manager 5.1.1
SDDC Manager 5.2

Cause

This is a known issue affecting SDDC Manager 5.1.1 and 5.2

Resolution

A fix has been applied to SDDC manager version 5.2.1 and later

Workaround:

Powered by Wolken Software