Affected products are no longer able to download from internet facing VMware public repositories. This article describes the process to update affected products with provided script.
VMware vCenter Server 7.x
VMware vCenter Server 8.x
VMware vSphere ESXi 7.x
VMware vSphere ESXi 8.x
SDDC Manager 4.5.x
SDDC Manager 5.x
Public facing repository URLs and authentication mechanisms are changing. Download URLs are no longer common but unique for each customer therefore will require to be re-configured.
The following outlines the affected components and resolution support by provided script. Unsupported if unspecified, manual steps may be available.
Depot | Component | Script | Version(s) |
VCF Depot | SDDC Manager | Yes | 4.5.x, 5.x |
Offline Bundle Transfer Utility (OBTU) | No | - | |
Async Patch Tool (AP Tool) | No | - | |
vApp Update (vCenter) | vCenter Server | Yes | 7.x, 8.x |
Host Update (ESX) | vSphere Lifecycle Manager (vLCM) and VMware Update Manager (VUM) |
Yes | 7.x, 8.x |
Update Manager Download Service (UMDS) | No | - | |
Auto Deploy / Image Builder | No | - | |
vSAN File Services | vSAN | No | - |
Disclaimer: Only Standalone Tools mentioned in the above table are not supported by the script.
Set-PowerCLIConfiguration -InvalidCertificateAction Ignore -Confirm:$false
Set-PowerCLIConfiguration -DefaultVIServerMode Multiple
There are 2 ways to execute the script, interactive (menu based) and non-interactive mode.
Interactive (menu driven) | Non-interactive | |
Endpoint Input(s) | Manual input(s) | Input file - JSON |
Credential(s) | Manual input(s) - obfuscated |
Input file - JSON (optional) *Obfuscated interactive input if credentials are not provided in JSON. |
SDDC Manager (and associated managed vCenters) | 1 endpoint maximum | 1 endpoint maximum |
vCenter - Non-SDDC Manager managed | 1 or more endpoint(s) | 1 or more endpoint(s) |
Menu interface./VMwareDepotChange.ps1
VMware Depot Update Menu.
1. Choose deployment type and connect.
2. Enter your download token.
3. Check depot configurations.
4. Update depot configurations.
5. (Optional) Dry run (validate token).
6. (Optional) Disconnect from endpoints.
7. (Optional) Show Version.
Q. Press Q to Quit
(1-9 or Q):
Note 1: Only the endpoint FQDN is required. Username and/or password values are not required and will be prompted in-line if not provided as an added security option to avoid storing credentials in plaintext.
Note 2: Only 1 SDDC Manager endpoint is supported. The associated SDDC Manager managed vCenter endpoint(s) do not need to be specified as the script will retrieve it from the SDDC Manager inventory. For additional SDDC Manager endpoints, create a separate JSON file.
Note 3: For non-VCF managed vCenter endpoints, 1 or more vCenter endpoints may be specified for connection.
Sample JSON for VCF endpoint with password:[
{
"SddcManagerFqdn" : "<sddc_fqdn>",
"SddcManagerUserName" : "administrator@vsphere.local",
"SddcManagerPassword" : "<password>",
"SddcManagerRootPassword" : "
<password>
" }
]
Sample JSON for VCF endpoint without credentials:[
{
"SddcManagerFqdn" : "
<sddc_fqdn>
" }
]
Sample JSON for vCenter endpoint(s) with credentials:
[ {
"VcenterFqdn" : "<vcenter_1_fqdn>",
"VcenterUsername" : "administrator@vsphere.local",
"VcenterPassword" : "
<password>
" },
{
"VcenterFqdn" : "
<vcenter_2_fqdn>
", "VcenterUsername" : "administrator@vsphere.local",
"VcenterPassword" : "
<password>
" }
]
Sample JSON for vCenter endpoint(s) without credentials:[
{
"VcenterFqdn" : "
<vcenter_1_fqdn>
" },
{
"VcenterFqdn" : "
<vcenter_2_fqdn>
" }
]
VCF: ./VMwareDepotChange.ps1 -Connect -Endpoint Vcf -JsonInput <path to JSON file>
vCenter: ./VMwareDepotChange.ps1 -Connect -Endpoint vCenter -JsonInput <path to JSON file>
Check Depot./VMwareDepotChange.ps1 -Check
Update Depot./VMwareDepotChange.ps1 -Update -DownloadToken <32 character token>
DryRun./VMwareDepotChange.ps1 -DryRun -DownloadToken <32 character token>
Version./VMwareDepotChange.ps1 -Version
Help./VMwareDepotChange.ps1 -Help
./VMwareDepotChange.ps1 -Disconnect
<script path>\logs
Set-PowerCLIConfiguration -InvalidCertificateAction Ignore -Confirm:$false
<script path>\logs
SHA256 Checksum of attachment:
VMwareDepotChange-1.0.0.0.50.zip - 89a5d262485134d8cddf0a0879c842763beb85998f06d5cb8397c595a1015f2d
Change log:
1.0.0.0.50
Added "-DryRun" option to check download token validity and depot reachability from script execution system.
Added helpful error message for when script execution system does not trust SDDC manager's SSL certificate.
Bug fix for authentication against isolated domains and SDDCm versions prior to 5.2.
Bug fix for listing custom depots using check command.
Removed "-Restore" option.
1.0.0.0.49 - Added fixes for minor errors (e.g. message type prefaced with dash for INFO).
1.0.0.0.48 - Support automation of proxy server validation configuration (KB392212).