vCenter Server Services stopped abruptly
search cancel

vCenter Server Services stopped abruptly

book

Article ID: 410267

calendar_today

Updated On:

Products

VMware vCenter Server

Issue/Introduction

vCenter Server services failing to start even though the Machine SSL certificates are valid

vpxd.log shows certificate as expired :

####-##-##T##:##:##.###+##:## error vpxd[64562] [Originator@6876 sub=IO.Http] User agent failed to send request; (null), N7Vmacore3Ssl18SSLVerifyExceptionE(SSL Exception: Verification parameters:
--> PeerThumbprint: ##:##:##:##:##:##:##:##:##:##.##:##:##:##:##.##:##:##:##:##
--> ExpectedThumbprint:
--> ExpectedPeerName: <#######vcname########>
--> The remote host certificate has these problems:
-->
--> * certificate has expired)

####-##-##T##:##:##.###+##:## error vpxd[64419] [Originator@6876 sub=Authorize] Failed to initialize authorizeManager
####-##-##T##:##:##.###+##:## warning vpxd[64419] [Originator@6876 sub=VpxProfiler] Start [VpxdAuthorize::Start()] took 186389 ms
####-##-##T##:##:##.###+##:## warning vpxd[64419] [Originator@6876 sub=VpxProfiler] ServerApp::Start [TotalTime] took 186829 ms
####-##-##T##:##:##.###+##:## error vpxd[64419] [Originator@6876 sub=Default] Failed to start VMware VirtualCenter. Shutting down
####-##-##T##:##:##.###+##:## info vpxd[64419] [Originator@6876 sub=SupportMgr] Wrote uptime information
####-##-##T##:##:##.###+##:## info vpxd[64419] [Originator@6876 sub=Default] Forcing shutdown of VMware VirtualCenter now

However, all the certs in the certificate store were valid.

 As per KB 322294 ran lsdoctor with --trustfix option - This did not fix the problem as well.

 - In /var/log/VMware/applmgmt/applmgmt.log :

####-##-##T##:##:## PM CEST [58497]INFO:vmware.vherd.transport.ssh_access_collector:[Unit Test] renewed 50 credits to post event
####-##-##T##:##:## PM CEST [58497]INFO:vmware.vherd.transport.ssh_access_collector:[Unit Test]Start collecting from sshinfo.log ...
####-##-##T##:##:## PM CEST [58497]ERROR:cis.vpxdevent_lib:Failed to get vcenter server endpoint urls. Err [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1076)
####-##-##T##:##:## PM CEST [58497]ERROR:vmware.vherd.transport.post_sso_events:Failed to get vcenter server endpoint urls. Err [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1076)
####-##-##T##:##:## PM CEST [58497]DEBUG:vmware.vherd.transport.authentication:Authentication Server Secret Renewed.

Environment

vCenter Server 7.0.3

Cause

May be a broken certificate causing communication failures between internal vcenter server components

Resolution

Replaced all the certificates to default certificates using vSphere certificate manager option 8 (KB318946).

All the vCenter server services started as expected.

Powered by Wolken Software