Re-trust between VMware Aria Automation and VMware Identity Manager fails with error LCMVRAVACONFIG590062
search cancel

Re-trust between VMware Aria Automation and VMware Identity Manager fails with error LCMVRAVACONFIG590062

book

Article ID: 388670

calendar_today

Updated On:

Products

VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

  • When running the Re-Trust with VMware Identity Manager task against VMware Aria Automation, the request fails with the following error :

    Error Code: LCMVRAVACONFIG590062

    Failed to check VMware Identity Manager root certificate on VMware Aria Automation. Check VMware Aria Suite Lifecycle logs for more details

  • The request fails with the same error code "LCMVRAVACONFIG590062" and message when "Retrust Product Certificate" is selected while replacing the VMware Identity Manager certificate from VMware Aria Suite Lifecycle.

Environment

VMware Aria Automation 8.x

VMware Aria Suite Lifecycle 8.x 

Cause

The root password has expired on the VMware Aria Automation nodes, or the VMware Aria Suite Lifecycle is unable to perform certificate validation as the VMware Aria Automation appliance is powered off.

Resolution

Scenario 1: VMware Aria Automation root password has expired :

  1. Update the password in the appliances and add the new password to the VMware Aria Suite Lifecycle Locker: 

  2. Log into the VMware Aria Automation Appliance(s) and change the password when prompted.

  3. Create a new Locker Password in VMware Aria Suite Lifecycle under Locker > Passwords > Add

  4. After the new password is created in the Locker, you can sync the password by retrying the failed Re-Trust task and selecting the new Password entry.

  5. Note: The task will fail for each node and will need to be retried with the new password selected for each. Once it succeeds, the password will be synced in VMware Aria Suite Lifecycle. 

Alternatively, if you do not wish to retry the failed task but want to sync the new VMware Aria Automation root password to VMware Aria Suite Lifecycle, you can sync the password in VMware Aria Suite Lifecycle by creating a Password entry in the Locker for the new root password, then changing the password for each node. 

  1. Go to Lifecycle Operations > Environments > Automation Environment (View Details) > VMware Aria Automation Node(s) > Change Node Password

  2. Select the Current Password (the one configured before changing)

  3. Select the new password (the one that was set via SSH when prompted)

  4. Submit

  5. Repeat for the remaining nodes if applicable. 

  6. Run Day-2 action - Re-trust with Identity Manager on VMware Aria Automation from VMware Aria Suite Lifecycle

Scenario 2: VMware Aria Automation appliance is powered off :

  1. Start the VMware Aria Automation appliance.

  2. Re-try the failed task or initiate the Day-2 action - Re-trust with Identity Manager on VMware Aria Automation from VMware Aria Suite Lifecycle.

Powered by Wolken Software