Unable to connect to internal Cassandra database with cqlsh-no-pass
Article ID: 393059
Updated On:
Products
VCF Operations/Automation (formerly VMware Aria Suite)
Issue/Introduction
- After upgrading to Aria Operations for Logs 8.18.3, you are unable to connect to the Cassandra database using the cqlsh-no-pass command, although there are no issues with the Cassandra cluster itself.
- After applying a custom certificate to Aria Operations for Logs through the UI or via Aria Suite Lifecycle you are unable to access the internal Cassandra database with the cqlsh-no-pass command.
- While running the cqlsh-no-pass command to connect to the Cassandra database, the following error is displayed:
Connection error: ('Unable to connect to any servers', {'127.0.0.1:9042': PermissionError(1, "Tried connecting to [('127.0.0.1', 9042)]. Last error: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self-signed certificate (_ssl.c:1007)")})
Environment
Aria Operations for logs 8.18.3
Resolution
- Log in to the node as root via SSH or vSphere Console
- Update the
cqlshrcconfiguration file by using this command:
Toggle from true to false use this command:
sed -i '/^validate =/s/true/false/' /storage/core/loginsight/cidata/cassandra/config/cqlshrc - Connect to the internal Cassandra database
cqlsh-no-pass
Note: This workaround will only be effective until the next time the appliance VM is rebooted. Repeat steps 1-3 if access to the internal Cassandra database is required again after rebooting the node.
Additional Information
This behavior will be fixed in a future version of VMware Aria Operations for Logs.
To toggle from false to true use this command:
sed -i '/^validate = /s/false/true/' /storage/core/loginsight/cidata/cassandra/config/cqlshrcFeedback
Yes
No
Powered by
