Attempts to install patches using Async patch tool command ./vcf-async-patch-tool -i /path/to/inputspec --du broadcom_support_email --sddcSSOUser SSOuser --sddcSSHUser vcf --it ONLINE --proxyServer fails with error  "Running the following command(s) as su user has failed"

/var/log/vmware/vcf/lcm/tools/asyncpatchtool/async_patch_tool.log

2025-03-11T10:56:23.032+0000 [main] DEBUG [com.vmware.evo.sddc.lcm.tools.common.BundleUtil]
                      Fetching vcf sddc manager bundle elements from Manifest file: /nfs/vmware/vcf/nfs-mount/apToolBundles/sddc-bundle-files/bundle-######/sddc-manager-upgrade/Manifest.json
2025-03-11T10:56:23.040+0000 [main] DEBUG [com.vmware.evo.sddc.lcm.tools.common.SddcManagerServiceUtil]
                      Completed updating SDDC service config fields
2025-03-11T10:56:23.040+0000 [main] DEBUG [com.vmware.evo.sddc.lcm.tools.common.BundleUtil]
                      Modifying file permissions to vcf:vcf
2025-03-11T10:56:23.051+0000 [main] DEBUG [com.vmware.evo.sddc.lcm.tools.bundletransfer.common.FilePermissionUtil]
                      Modified file permissions to 755 on the file: /nfs/vmware/vcf/nfs-mount/apToolBundles/sddc-bundle-files
2025-03-11T10:56:28.302+0000 [main] ERROR [com.vmware.evo.sddc.lcm.tools.asyncpatch.AsyncPatchToolMain]
                      Error while initiating required functionality: ENABLE_ASYNC_PATCH
2025-03-11T10:56:28.314+0000 [main] ERROR [com.vmware.evo.sddc.lcm.tools.asyncpatch.AsyncPatchToolMain]
                      SERVICE_UPGRADE_SCRIPT_FAILED
-- Error Message: VCF service upgrade or config property update script failed with error Running the following command(s) as su user has failed 

/var/log/vmware/vcf/lcm/lcm.log

2025-03-11T10:56:40.028+0000 INFO  [vcf_lcm,] [c.v.v.c.c.i.v.r.client.VvsApiClient,Scheduled-2] vvs uri with query params: https://vvs.esp-staging.vmware-aws.com/v1/products/bundles/type/
vcf-lcm-bundle?format=json
2025-03-11T10:56:40.612+0000 ERROR [vcf_lcm,] [c.v.v.c.c.i.v.r.client.VvsApiClient,Scheduled-2] response from vvs wasn't successful with statusCode: 403
2025-03-11T10:56:40.612+0000 ERROR [vcf_lcm,] [c.v.v.c.c.i.v.r.client.VvsApiClient,Scheduled-2] Invalid null response from VMware Verification Service v1/products/bundles/type/vcf-lcm-bun
dle api.
2025-03-11T10:56:40.613+0000 ERROR [vcf_lcm,] [c.v.e.s.l.c.s.VmwareCompatibilityDataDownloadScheduler,Scheduled-2] VVS Compatibility Data update failed
com.vmware.vcf.compatibility.controllers.internal.vvs.exception.VvsException: The VVS api call to v1/products/bundles/type/vcf-lcm-bundle failed.

Test connectivity to vvs.esp with command in ssh session to SDDC Manager

curl --location 'https://vvs.esp.vmware.com/v1/products/bundles/type/vcf-lcm-bundle?format=json'   --header 'X-Vmw-Esp-ClientId: vcf-lcm' > VmwareCompatibilityData.json -vvv  --proxy proxyFQDN:port

Failed connection example output



* Issue another request to this URL: 'https://storage.googleapis.com/vmwesp-prod-66-poqoo-vvs-esp-cf-bucket

* Hostname proxyFQDN was found in DNS cache
*   Trying ###.###.##.##:####...
* Connected to proxy (###.###.##.##) port #### (#1

< HTTP/1.1 403 Forbidden
< Cache-Control: no-cache
< X-XSS-Protection: 1
< Connection: Keep-Alive
< Content-Type: text/html; charset=utf-8
< Content-Length: 1932
< Pragma: no-cache
<
* CONNECT tunnel failed, response 403
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0
* Closing connection 1
curl: (56) CONNECT tunnel failed, response 403

VCF 5.1
VCF 5.2

SDDC Manager is unable to connect to the public URLs in order to download the VMwareCompatibilityData.json file due to response from vvs wasn't successful with statusCode: 403