Configure Depot on VCF Installer fails with, "No peer identity established, Issue while retrieving or persisting Proxy Server Certificate"
Article ID: 402506
Updated On:
Products
Issue/Introduction
/var/log/vmware/vcf/operationsmanager/operationsmanager.log======================================================================================[YYYY-MM-DDTHH:MM:SS] ERROR [vcf_om,686e34edcd966b5ea96b4bcd43842e48,a110] [c.v.v.c.u.c.CertificateRetrieverUtil,http-nio-127.0.0.1-7300-exec-10] Failed to connect to proxy.####.###.###:8080 after 10038 ms[YYYY-MM-DDTHH:MM:SS] ERROR [vcf_om,686e34edcd966b5ea96b4bcd43842e48,a110] [c.v.v.c.u.c.CertificateRetrieverUtil,http-nio-127.0.0.1-7300-exec-10] Socket error: No peer identity established[YYYY-MM-DDTHH:MM:SS] WARN [vcf_om,686e34edcd966b5ea96b4bcd43842e48,a110] [c.v.v.c.c.util.CertificateRetriever,http-nio-127.0.0.1-7300-exec-10] Certificate not trusted for proxy.####.###.###: javax.net.ssl.SSLPeerUnverifiedException: No peer identity established[YYYY-MM-DDTHH:MM:SS] INFO [vcf_om,686e34edcd966b5ea96b4bcd43842e48,a110] [o.b.jsse.provider.ProvTlsClient,http-nio-127.0.0.1-7300-exec-10] [client #24 @7e4fb278] opening connection to proxy.###.####.###:8080[YYYY-MM-DDTHH:MM:SS] INFO [vcf_om,686e34edcd966b5ea96b4bcd43842e48,a110] [o.b.jsse.provider.ProvTlsClient,http-nio-127.0.0.1-7300-exec-10] [client #24 @7e4fb278] raised fatal(2) unexpected_message(10) alert: Failed to read recordorg.bouncycastle.tls.TlsFatalAlert: unexpected_message(10); Unsupported UNKNOWN(72)
Environment
VMware Cloud Foundation 9.x
Cause
VCF Installer does not trust the Proxy Server Certificate
Resolution
Add the proxy certificate into the VCF Installer trust store.
Follow the steps in KB, How to import Proxy server certificate to SDDC manager trust store.
Feedback
