VMware Aria Operations certificate replacement precheck from Aria Suite Lifecycle fails with error code LCMCOMMON80066
Article ID: 418246
Updated On:
Products
VCF Operations/Automation (formerly VMware Aria Suite)
Issue/Introduction
- VMware Aria Operations certificate replacement precheck from Aria Suite Lifecycle fails with error code LCMCOMMON80066.
- On vmware_vrlcm.log, we see the below error messages :
YYYY-MM-DDTHH:MM:SS.###Z INFO vrlcm[1101] [pool-3-thread-7] [c.v.v.l.p.a.s.Task] -- Injecting task failure event. Error Code : 'LCMCOMMON80066', Retry : 'false', Causing Properties : '{ CAUSE :: }' com.vmware.vrealize.lcm.common.exception.LcmException: Pre-validation checks failed for certificate replace task. ... "checkName" : "Certificate Validation", "checkType" : "ERROR", "status" : "FAILED", "recommendations" : [ "Use a valid SAN certificate with all hostnames present for product nodes or use a wildcard certificate", "In case of SAN certificate make sure following hostname(s) are present: Primary_Node_FQDN, Node_2_FQDN, Node_3_FQDN, Cloud_Proxy_1_FQDN, Cloud_Proxy_2_FQDN, ... Cloud_Proxy_N_FQDN" ], "resultDescription" : "The hosts in the certificate doesn't match with the provided/product hosts",
Environment
VMware Aria Suite Lifecycle 8.18.x
VMware Aria Operations 8.x
Cause
Missing hostnames of VMware Aria Operations node or Cloud Proxy on the SAN field of the certificate.
Resolution
1. Generate a new certificate for VMware Aria Operations using VMware Aria Suite Lifecycle.
2. During generation of new certificate, add all hostnames recommended by the certificate replacement precheck to the certificate's Subject Alternative Name (SAN) fields. Alternatively, use a wildcard certificate to cover all the hostnames.
2. During generation of new certificate, add all hostnames recommended by the certificate replacement precheck to the certificate's Subject Alternative Name (SAN) fields. Alternatively, use a wildcard certificate to cover all the hostnames.
Feedback
Yes
No
Powered by
