ESXi host commission in SDDC Manager inventory fails at Host Addition and Validation stage with below error

Unable to get the Host Fingerprint, verify ESXi host connectivity or credentials or SSH

• This issue can happen if the SSH is not enabled on the ESXi host.
• Issues with Firewall (ports, rules, etc.)
• Issue with certificate.

• Ensure that SSH is enabled on the ESXi host and also there are no firewall rules in place.
• This issue can also happen if the host certificate has short name instead of FQDN.
  1. To check the same SSH to SDDC manager as vcf and su.
  2. Run the below command

     openssl s_client -connect esxi01.example.com:443 -showcerts

     Sample output

     CONNECTED(00000003)
     depth=0 C = US, ST = California, L = Palo Alto, O = VMware, OU = VMware Engineering, CN = esxi01, emailAddress = [email protected]

  3. Check the "CN", if the CN is shortname and if yes then follow the steps below on the ESXi host to make the hostname as FQDN
     1. SSH to ESXi with root user.
     2. Run the below commands to update the hostname

        esxcli system hostname set --host=esxi01
        esxcli system hostname set --fqdn=esxi01.example.com

     3. Confirm the changes

        esxcli system hostname get

     4. Replace the ESXi certificates with the below steps.

        cd /etc/vmware/ssl

        mv rui.key rui.key.orig

        mv rui.crt rui.crt.orig

        /sbin/generate-certificates

     5. Once completed, restart hostd,vpxa and rhttpproxy services.

        /etc/init.d/hostd restart

        /etc/init.d/vpxa restart

        /etc/init.d/rhttpproxy restart

• Retry host commission from SDDC manager.