Catalog not Syncing in VMware Cloud Director
search cancel

Catalog not Syncing in VMware Cloud Director

book

Article ID: 385805

calendar_today

Updated On:

Products

VMware Cloud Director

Issue/Introduction

  • Catalog synchronization failing with the error:

    ERROR - Unable to establish SSL connection: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_falure
  • In /opt/vmware/vcloud-director/logs/vcloud-container-debug.log you see entry similar the one below:

    DATE TIME | ERROR    | task-service-activity-pool-567 | SyncManager                    | Cannot fetch remote library endpoint. | requestId=########-###-####-########7a5d,request=POST https://cloud.example.com/api/catalog/########-###-####-########893c/action/sync,requestTime=1732705201648,remoteAddress=##.##.##.##:17071,userAgent=Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 ...,accept=application/*+xml;version 39.0.0-alpha vcd=########-###-####-########f53f,task=########-###-####-########44dc activity=(com.vmware.vcloud.backendbase.management.system.TaskActivity,urn:uuid:########-###-####-########44dc)
    javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
            at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:131)
            at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:117)
            at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:347)
            at java.base/sun.security.ssl.Alert$AlertConsumer.consume(Alert.java:293)
            at java.base/sun.security.ssl.TransportContext.dispatch(TransportContext.java:186)
            at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:172)
            at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1507)
            at java.base/sun.security.ssl.SSLSocketImpl.readHandshakeRecord(SSLSocketImpl.java:1417)
            at java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:456)
            at java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:427)
            at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:436)
            at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:384)
            at org.apache.http.impl.conn.DefaultHttpClientConnectionOperator.connect(DefaultHttpClientConnectionOperator.java:142)
            at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:376)
            at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:393)
            at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:236)
            at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:186)
            at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:89)
            at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:110)
            at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:185)
            at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:83)
            at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:108)
            at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:56)
            at com.vmware.cl.clsp.sync.RemoteClspEndpoint.postProcessAndExecuteInt(RemoteClspEndpoint.java:264)
            at com.vmware.cl.clsp.sync.RemoteClspEndpoint.postProcessAndExecute(RemoteClspEndpoint.java:294)
            at com.vmware.cl.clsp.sync.RemoteClspEndpoint.getJson(RemoteClspEndpoint.java:133)
            at com.vmware.cl.SyncManager.syncLibraryTask(SyncManager.java:255)
            at com.vmware.cl.SyncManager.executeTask(SyncManager.java:401)
            at com.vmware.vcloud.backendbase.management.system.TaskActivity$ExecutePhase$1.doInSecurityContext(TaskActivity.java:848)
            at com.vmware.vcloud.backendbase.management.system.TaskActivity$ExecutePhase$1.doInSecurityContext(TaskActivity.java:843)
            at com.vmware.vcloud.backendbase.management.system.SecurityContextTemplate.executeForOrgAndUser(SecurityContextTemplate.java:49)
            at com.vmware.vcloud.backendbase.management.system.TaskActivity$ExecutePhase.execute(TaskActivity.java:850)
            at com.vmware.vcloud.backendbase.management.system.TaskActivity$ExecutePhase.invokeInner(TaskActivity.java:746)
            at com.vmware.vcloud.backendbase.management.system.TaskActivity$TaskActivityBasePhase.invoke(TaskActivity.java:361)
            at com.vmware.vcloud.activity.executors.ActivityRunner.runPhase(ActivityRunner.java:175)
            at com.vmware.vcloud.activity.executors.ActivityRunner.run(ActivityRunner.java:112)
            at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:515)
            at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
            at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
            at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
            at java.base/java.lang.Thread.run(Thread.java:829)

Environment

VMware Cloud Director 10.x

Cause

The issue is caused by a mismatch in the cipher enabled on the VMware Cloud Director (VCD) cells and the Load Balancer (LB).

Resolution

The ciphers enabled on VCD and LB must be the same.
Check and enabled the same set of cipher on the VCD cells and the LB.
Visit the documentation at Managing the List of Allowed SSL Ciphers in VMware Cloud Director to enable and/or disable ciphers on the VCD cells.

Powered by Wolken Software