VM web console fails with Error "Couldn't establish a connection to the VM web console"
search cancel

VM web console fails with Error "Couldn't establish a connection to the VM web console"

book

Article ID: 403659

calendar_today

Updated On:

Products

VMware vCenter Server VMware vSphere ESXi

Issue/Introduction

  • Error "Couldn't establish a connection to the VM web console" when accessing VM web console for VMs on Enhanced linked mode vCenter server
  • After upgrading VM web console stops working

Environment

  • vCenter - 8.x
  • vCenter - 9.x
  • ESXi - 8.x
  • ESX - 9.x

Cause

  • In ESXi 7.0, port 902 is used for VM web console access.

/var/log/vmware/vsphere-ui/logs/vspheremessaging.log 

[####-##-## ##:##:##.377] [INFO ] http-nio-5090-exec-26 [webconsole] Starting Authd client for vm vm-####
[####-##-## ##:##:##.415] [INFO ] http-nio-5090-exec-26 [webconsole] for vm: vm-#### given thumbprint from MKS ticket matched with server certificates
[####-##-## ##:##:##.548] [INFO ] http-nio-5090-exec-26 [webconsole] for vm: vm-#### given thumbprint from MKS ticket matched with server certificates
[####-##-## ##:##:##.676] [INFO ] http-nio-5090-exec-26 [webconsole] opened for vm -  vm-#### and the socket on which opened Socket[addr=/<ESXi PORT>,port=902,localport=50202]

  •  In ESXi 8.0, port 443 is used for VM web console access.

/var/log/vmware/envoy/envoy-access.log

[timestamp] info envoy[2538] [Originator@6876 sub=Default] [timestamp] GET /ui/webconsole.html?vmId=vm-#######&vmName=VMNAME&numMksConnections=0&serverGuid=83######-####-####-####-######df0a22&locale=##-## 200 via_upstream - 0 4279 zstd 1 1 0 ##.##.##.##:49287 HTTP/2 TLSv1.2 Source vCenter IP:443 127.0.0.1:55988 HTTP/1.1 - 127.0.0.1:5090 - - [timestamp] info envoy[2538] [Originator@6876 sub=Default] [timestamp] GET /ui/##########-###### 200 via_upstream - 0 144 zstd 62 62 0 ##.##.##.##:49287 HTTP/2 TLSv1.2 Source vCenter IP:443 127.0.0.1:55908 HTTP/1.1 - 127.0.0.1:5090 - - [timestamp] info envoy[2538] [Originator@6876 sub=Default] [timestamp] GET /##########-######/###############/7af47c4ab6b720de 503 no_healthy_upstream UH 0 19 - 120009 - - ##.##.##.##:49287 HTTP/2 TLSv1.2 Source vCenter IP:443 - - - ESXi Host IP:443 - -

Resolution

Connecting to a Browser-Based Virtual Machine Console Through the vSphere Client

  1. Ensure to allow vSphere Client to access vCenter Server on port 443.
  2. Ensure to allow vCenter Server to access the ESXi host on port 902.

Additional Information

Powered by Wolken Software