Remediating ESXi credentials in SDDC manager fails

search cancel

Remediating ESXi credentials in SDDC manager fails

book

Article ID: 421732

calendar_today

Updated On:

Products

VMware SDDC Manager VMware vSphere ESXi

Issue/Introduction

Root and service account credentials of ESXi host in SDDC manager are in disconnected state
Remediate password operation on either root or service account fails
In the /var/log/vmware/vcf/operationsmanager/operationsmanager.log on the SDDC Manager, you will see below entries:

INFO [vcf_om, ] raised fatal(2) certificate_unknown(46) alert: Failed to read record org.bouncycastle.tls.TlsFatalAlert: certificate_unknown(46)

ERROR [vcf_om, ] Exception occured in getting connection to ESXi host:

com.vmware.vim.vmomi.client.exception.sslException: org.bouncycastle.tls.TlsFatalAlert: certificate_unknown(46)

Cause

This issue occurs when the ESXi host is still using the default certificate created during ESXi installation. Issued by section of the certificate will be similar to:

Resolution

Renew ESXi host certificate from vCenter
Remediate credentials from SDDC Manager

Additional Information

For additional details refer Renew or Refresh ESXi Certificates

Feedback

thumb_up Yes

thumb_down No