Unable to set NTP settings on VMware Identity Manager after applying patch CVE-97727
Article ID: 396420
Updated On:
Products
VCF Operations/Automation (formerly VMware Aria Suite)
Issue/Introduction
- After applying patch CVE-97727 to Identity manager, appliance will fail to set new NTP server as per After changing the NTP server for vIDM the old settings are still displayed.
- Failed to Set NTP configurations on Aria Automation:
- When attempting to configure NTP settings on Aria Automation from Aria Suite Lifecycle, prechecks will have NTP server warning message "
Could not check if VMware Identity Manager clock at node <node fqdn/ip> is in sync with the NTP server" - Error stack in Aria Suite Lifecycle:
-------------------- INFO vrlcm[1214] [pool-3-thread-33] [c.v.v.l.u.SshUtils] : Command: sntp <vIDM Node IP> INFO vrlcm[1214] [pool-3-thread-33] [c.v.v.l.u.SshUtils] : exit-status: 127 INFO vrlcm[1214] [pool-3-thread-33] [c.v.v.l.u.SshUtils] : Command executed successfully INFO vrlcm[1214] [pool-3-thread-33] [c.v.v.l.u.SshUtils] :Command execution response: { "exitStatus" : 127, "outputData" : "", "errorData" : "sntp: error while loading shared libraries: libevent_pthreads-2.1.so.6: cannot open shared object file: No such file or directory\n", "commandTimedOut" : false } - The same precheck is encountered despite using the vASL APIs to change NTP settings or NTPSettingsPrechecks.
- When attempting to configure NTP settings on Aria Automation from Aria Suite Lifecycle, prechecks will have NTP server warning message "
Environment
VMware Identity Manager 3.3.7
Cause
Due to the missing NTP rpm update in the patch CVE-97727.
Resolution
Apply the latest available patch CSP-99024 or newer.
Additional Information
If applying NTP configurations on Aria Automation, re-try the NTP settings configuration request after patching vIDM.
Feedback
Yes
No
Powered by
