• The issue occurs because the SSL handshake with the vCenter Server fails. The SSL handshake fails due to a host name mismatch, as the vCenter certificate is generated using only the IP address in the Subject Name and not the FQDN (Fully Qualified Domain Name).
• The /opt/vmware/support/logs/dr/drconfig.log file confirms that the reconfiguration task fails with the error: "Host name does not match the subject name(s) in certificate."

2025-12-09T13:31:45.782Z warning drconfig[01311] [SRM@6876 sub=IO.Connection opID=d37ba9dc-3397-402a-a326-849a7c4f4604-configure:7d45] Failed to SSL handshake; SSL(<io_obj p:0x00007f0720003ff0, h:24, <TCP '10.##.##.#00 : 56034'>, <TCP '10.##.##.#1 : 443'>>), e: 167772294(certificate verify failed (SSL routines)), duration: 18msec
2025-12-09T13:31:45.783Z warning drconfig[01311] [SRM@6876 sub=ProbeSsl.Url.ConfigureVrmsOp opID=d37ba9dc-3397-402a-a326-849a7c4f4604-configure:7d45] SSL client handshake to 'hostname:443' failed.
--> N7Vmacore3Ssl18SSLVerifyExceptionE SSL Exception: Verification parameters:
--> PeerThumbprint: 4D:19:##:##:##:##:##:##:##:##:##:##:##:##:##:##:##:C0:E7:1D
--> ExpectedThumbprint:
--> ExpectedPeerName: hostname
--> The remote host certificate has these problems:
-->
--> * Host name does not match the subject name(s) in certificate.
-->
--> * unable to get local issuer certificate

• The vCenter certificate Subject Alternative Name (SAN) contains only the IP address and does not include the DNS Name, which causes the SSL validation to fail.