"Desired configuration failed validation on the host. Check compliance is skipped" error after adding a new ESXi host to existing Configuration Profile configured cluster
search cancel

"Desired configuration failed validation on the host. Check compliance is skipped" error after adding a new ESXi host to existing Configuration Profile configured cluster

book

Article ID: 397191

calendar_today

Updated On:

Products

VMware vCenter Server VMware vSphere ESXi

Issue/Introduction

  • An existing cluster is configured with the Configuration Profiles.
  • Configuration Profile is imported from a Reference host.
  • While adding a new ESXi host to the cluster, compliance check fails with the error: "Desired configuration failed validation on the host. Check compliance is skipped".
  • Under Cluster > Configure > Desired State > Configuration > Compliance, below errors are seen:


    Path

    /host-specific/#######-#####-####-0000-0000000#####/esx/network/vmknics/2/ip/ipv4_address

    Can not set default gateway on 'vmk2' because ip address unset
    Can not set default gateway 'ip_address' on netstack "defaultTcpipStack', network unreachable

  • All the existing hosts show as compliant for the Configuration Profile.

Environment

  • VMware vCenter 8.x
  • VMware vSphere ESXi 8.x.

Cause

  • While adding a new ESXi host to the existing Configuration Profiles configuired cluster, this behavior is expected as Cluster is unaware of the host-specific details o0f the ESXi host which is added to the cluster.

Resolution

Please follow the below steps after adding the ESXi host to a CP configured cluster:

  • Browse to the Configuration Profile configured cluster where the new host is added.
  • Export the cluster configuration from Cluster > Configure > Desired State > Configuration > Settings > Export > Cluster Configuration.
  • This will download the Cluster Config in a json format.
  • Open this json file in a Editor.
  • Look for the host-specific tag in the json file.
  • Every host which was already part of the cluster will have a unique ID. 
  • Get the unique ID for the host which needs to be added from the Error in Compliance check: /host-specific/#######-#####-####-0000-0000000#####/esx/network/vmknics/2/ip/ipv4_address.
  • Copy any one of the host details and paste under host-specific tag and edit the details as per the newly added host. (Eg: ipv4_address)
  • Save the file and import to the cluster under Cluster > Configure > Desired State > Configuration > Draft > Import from File.
  • Click on Show Changes if required or else click on Apply Changes.
  • This will perform a pre-check and also show us the impact of the remediation.
  • Click on Remediate to apply the changes on the host.
  • Once the remediation task is completed the ESXi host comes up as compliant for the configuration profile.

Additional Information

Powered by Wolken Software