Aria Automation service startup (deploy.sh) failing at step "Populating initial identity-service data"
search cancel

Aria Automation service startup (deploy.sh) failing at step "Populating initial identity-service data"

book

Article ID: 385728

calendar_today

Updated On:

Products

VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

Aria Automation service startup fails while populating identity-service data due to timeouts of HTTPS connections from Aria Auto to the vIDM environment.

Symptoms:

  • Other deploy.sh errors (saved in /var/log/deploy.log) include:
    • Exit code of install/update of release identity-service is 1
    • RuntimeError: retry timeout exceeded for helm_wait_check
    • ERROR Release 'identity-service' in namespace 'prelude' failed to come up
  • Aria Suite Lifecycle may show Error Code: LCMVRAVACONFIG590093

Environment

Aria Automation 8.x.

vIDM (VMware Identity Manager) 3.3.7.

Cause

The below log entries show service startup is failing to populate data to the identity-service.

The identity-service is unable to get a response from the vIDM environment ("handshake timed out").

/var/log/deply.log:

+ log_stage 'Populating initial identity-service data'
+ set +x
=========================
[2025-01-09 17:23:13.890+0100] Populating initial identity-service data
=========================
...
+ curl -k -f -X POST http://identity-service.prelude.svc.cluster.local:8000/csp/gateway/am/api/orgs -H 'Content-Type: application/json... 
...
curl: (22) The requested URL returned error: 500
+ on_exit
+ '[' 22 -ne 0 ']'
+ echo 'Deployment failed. Collecting log bundle ...'

/services-logs/prelude/identity-service-app/file-logs/identity-service-app.log:

ERROR identity-service ... c.v.i.c.RestResponseEntityExceptionHandler.logError:225 - Handling generic exception: handshake timed out after 10000ms
org.springframework.web.reactive.function.client.WebClientRequestException: handshake timed out after 10000ms ...
Error has been observed at the following site(s):
*__checkpoint ⇢ Request to PUT https://{vIDM_FQDN}/SAAS/jersey/manager/api/oauth2clients/vro-gateway-...

Resolution

In an SSH session to the Aria Auto Appliance(s), verify network connectivity to the vIDM environment on port 443:

  • curl -kv https://{vIDM_FQDN}:443

Check that vIDM environment is healthy:

The vIDM environment should be in a running/healthy state before Aria Automation services are started.

Once any vIDM or networking issues are resolved, then start Aria Automation services normally using "/opt/scripts/deploy.sh" command.

Powered by Wolken Software