Error: ""The Site cannot be reached , Connections to port 443 refused." when attempting to log in
search cancel

Error: ""The Site cannot be reached , Connections to port 443 refused." when attempting to log in

book

Article ID: 404082

calendar_today

Updated On:

Products

VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

  • Unable to log in using the IPs & FQDN of the nodes or the Internal Load Balancer address (VIP)
  • /storage/core/loginsight/var/runtime.log shows the following errors:

[2025-07-14 10:11:59.540+0000] ["s3-admin-0"/<node_IP> INFO] [com.datastax.oss.driver.internal.core.time.Clock] [Could not access native clock (see debug logs for details), falling back to Java system clock]
[2025-07-14 10:11:59.543+0000] ["s3-io-0"/<node_IP> INFO] [com.datastax.oss.driver.internal.core.protocol.Lz4Compressor] [[s3] Using LZ4Factory:JavaUnsafe]
[2025-07-14 10:11:59.546+0000] ["s3-admin-1"/<node_IP> WARN] [com.datastax.oss.driver.internal.core.control.ControlConnection] [[s3] Error connecting to Node(endPoint=<node_ip>:9042, hostId=null, hashCode=799e25fd), trying next node (AnnotatedConnectException: Connection refused: /<node_IP>:9042)]
[2025-07-14 10:12:00.129+0000] ["DaemonCommands-thread-1"/<node_IP>WARN] [org.apache.thrift.server.TThreadPoolServer] [SocketException occurred during processing of message.]
java.net.SocketException: Broken pipe (Write failed)
   at sun.security.ssl.SSLSocketOutputRecord.flush(Unknown Source) ~[?:?]
        at sun.security.ssl.HandshakeOutStream.flush(Unknown Source) ~[?:?]
        at sun.security.ssl.CertificateRequest$T12CertificateRequestProducer.produce(Unknown Source) ~[?:?]
        at sun.security.ssl.SSLHandshake.produce(Unknown Source) ~[?:?]

or

[2025-07-10 08:57:03.824+0000] ["DaemonCommands-thread-1"/#.#.#.# ERROR] [org.apache.thrift.server.TThreadPoolServer] [Thrift Error occurred during processing of message.]
org.apache.thrift.transport.TTransportException: javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_expired

  • In /storage/core/loginsight/var/cassandra.log

ERROR [Messaging-EventLoop-3-3] 2025-07-14T10:15:58,554 OutboundConnectionInitiator.java:394 - Failed to handshake with peer /<node_ip>:7000( /<node_ip>:7000)
io.netty.handler.codec.DecoderException: javax.net.ssl.SSLHandshakeException: PKIX path validation failed: java.security.cert.CertPathValidatorException: validity check failed
Caused by: javax.net.ssl.SSLHandshakeException: PKIX path validation failed: java.security.cert.CertPathValidatorException: validity check failed
Caused by: java.security.cert.CertificateExpiredException: NotAfter: Sat Apr 26 19:39:11 UTC 2025

  • The following command shows that the certificate has expired:

    echo "" | keytool -list -keystore /usr/lib/loginsight/application/etc/3rd_config/keystore -rfc 2> /dev/null | openssl x509 -noout -enddate

Environment

Aria Operations for logs / vRealize Log Insight (vRLI) 8.18.x

Cause

Aria Operations for logs certificate has expired.

Resolution

Powered by Wolken Software