Unable to update AWS Cloud Account as part of Secret/Key Rotation.

search cancel

Unable to update AWS Cloud Account as part of Secret/Key Rotation.

book

Article ID: 417118

calendar_today

Updated On:

Products

VCF Automation VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

When using a short term Secret key rotation in AWS cloud services, you are receiving an error:

Operation on cloud account of type 'aws' failed: Unable to execute HTTP request: certificate_unknown(46)

Environment

VCF Automation 8.18.x

AWS Web services as a cloud account.

Cause

The secret key rotation has no certificate passed in request.

Resolution

This is a known issue being resolved in a future release.

a temporary workaround is to use a rest call to update the values.

The URL of the cloud account will have a %2fXXXXXXXXXXXXXX. This will be the endpoint UUID in the rest call.

curl --request PUT \
  --url https://AriaAutoFQDN/provisioning/mgmt/endpoints/3edbc167-643f-4de0-a5ab-ac338154d343 \
  --header 'authorization: Bearer token' \
  --header 'content-type: application/json' \
  --data '{
  "endpointType": "aws",
  "documentSelfLink": "/resources/endpoints/Endpoint-UUID,
  "endpointProperties": {
    "privateKeyId": "AWS generated key",
    "privateKey": "AWS Private key",
    "regionId": "selected AWS Region"
  }
}'

Additional Information

See VMware Aria Automation Orchestrator REST API Guide for choices and guide to authenticate for rest calls.

Feedback

thumb_up Yes

thumb_down No