vCenter and all hosts are connected to Key Management Servers" warning is shown in Skyline Health
search cancel

vCenter and all hosts are connected to Key Management Servers" warning is shown in Skyline Health

book

Article ID: 399526

calendar_today

Updated On:

Products

VMware vSAN

Issue/Introduction

Symptoms:

  • In Skyline Health, for a given vSAN cluster, this warning is displayed

"vCenter and all hosts are connected to Key Management Servers"

  • In the specified vSAN cluster, under Monitor > vSAN > Skyline Health, a "Failed to get KMS status" error is reported by ESXi hosts to KMS server.

  • Connectivity tests on port 5696 from the ESXi host to KMS server may fail or time out, indicating a potential network connectivity issue:

# nc -z <KMS Server Address> 5696

Environment

VMware vSAN 7.x
VMware vSAN 8.x

Cause

This is caused by the connectivity issue between ESXi  Hosts and KMS servers on KMIP port (5696 by default)

Resolution

Ensure that all ESXi hosts in the vSAN cluster have network connectivity to KMS servers over the KMIP port (TCP 5696)

Powered by Wolken Software