Unable to add ESXi host to vCenter error message observed: unable to get signed certificate for host "error_invalid_data"
search cancel

Unable to add ESXi host to vCenter error message observed: unable to get signed certificate for host "error_invalid_data"

book

Article ID: 400852

calendar_today

Updated On:

Products

VMware vCenter Server

Issue/Introduction

When attempting to add an ESXi host to the vCenter it fails.

In the UI you see error similar to following:

unable to get signed certificate for host "error_invalid_data"

In the vpxd.log file on the vCenter located at /var/log/vmware/vpxd you se following error:

YYYY-MM-DDThh:mm:ss.fff-##:## error vpxd [2119846] [Originator@6876 sub-Default opID=********-********-auto-hulqb-h5:72047791-25] [VpxLRO] ERROR task-10020 517 52664bc4-3002-9815-2d0b-6690c30014a6 (522dcb28-5311-85c7-ada4-209bad064f96) group-h63 vim. Folder.addStandaloneHost: :vmodl.fault.SystemError --> Result:
(vmodl.fault.SystemError) {
faultCause = (vmodl. MethodFault) null,
faultMessage = <unset>,
reason= "Unable to get signed certificate forhost name 'your_esxi_host' ip '**.*.***.***': Error: Operation failed with error = ERROR_INVALID_DATA (13) (13)"
--> msg=""
--> }
--> Args:
-->
--> Arg spec:
-> (vim.host.ConnectSpec) {
->
--> }
hostName="your_esxi_host"
port = <unset>,
sslThumbprint = "**: **:**:**:**:**:**:**:**:",
sslCertificate = <unset>,
userName = "root",
password= (not shown),
vmFolder 'vim. Folder:
force true,
vimAccountName = "vpxuser",
vimAccount Password = (not shown),
management Ip = <unset>,
lockdownMode = "lockdownDisabled",
hostGateway= (vim.host.GatewaySpec) null
-->Arg compResSpect
-->
--> Arg addConnected: --> true
--> Arg license:
<-->

Attempts to perform vmca root certificate operations manually on the vCenter result in following:

Error: 87, VMCAAddRootCertificatePrivate () failedError: 87, Failed to add root certificate Status: Failed
Error Code : 87
Error Message: Operation failed with error root@your_vCenter [ /tmp/certs ]# |
ERROR_INVALID_PARAMETER (87)

Environment

vCenter 8x

Cause

Running df -h on the vCenter discovers that the root partition is full.

Resolution

Start by making space on the root partition by clearing files from example:

  • old dumps in /storage/core
  • old log bundles residing on the vCenter
  • To search for files over 200mb in size:
    find / -size +200M -exec stat -c "%s %n" {} \; | sort -n

Once the storage issue has been resolved reboot the vCenter.

Workaround:
-To get the host connected immediately switching the advanced vCenter setting vpxd.certmgmt.mode to thumbprint will allow the host to be added without any certificate operation taking place.

Powered by Wolken Software