In the SSP UI under System → NSX Managers, the following status is observed:

• Readiness: Not Ready

• Inventory Sync: Down

• Infrastructure Sync: Up

Security Services Platform 5.0

This issue occurs when the firewall blocks traffic from NSX Manager to the SSP Messaging URL/IP on port 9092.

• Port 443 towards the Ingress URL may already be open, which explains why Infrastructure Sync shows as Up.

• However, Inventory Sync requires port 9092 (Messaging URL/IP) to be reachable.

• Verify SSP Ingress and Messaging details

  • Log in to SSP Installer UI.

  • Navigate to: Instance Management → Security Services Platform Instance.

  • Note the values for:

    • Instance FQDN & IP (Ingress)

    • Messaging FQDN & IP

• Test connectivity from NSX Manager to Messaging URL/IP

  • SSH into NSX Manager using root credentials.

  • Run:

    nc -vz <ssp-messaging-url> 9092
    

  • If the connection fails, traffic to port 9092 is blocked.

• Update firewall rules

  • Ensure that NSX Manager can reach the SSP Messaging FQDN/IP on port 9092.

  • Refer to Broadcom Port Requirements for the complete list of required ports and protocols.

• Re-test connectivity

  • Run the same netcat (nc) test again to confirm port 9092 is open.

  • Once successful, allow up to ~1 hour for the Inventory Sync status to update, as synchronization may take time.