VCF Workload Domain Import Fails at "Deploy NSX Managers" with Error NSXT_MANAGER_NON_OPERATIONAL
search cancel

VCF Workload Domain Import Fails at "Deploy NSX Managers" with Error NSXT_MANAGER_NON_OPERATIONAL

book

Article ID: 424870

calendar_today

Updated On:

Products

VCF Operations VMware Cloud Foundation VMware SDDC Manager

Issue/Introduction

  • When attempting to import a Workload Domain in VMware Cloud Foundation (VCF), the workflow fails at the Deploy NSX Managers stage. The operation times out or fails immediately, indicating that the NSX Manager is not operational.
  • Error in /var/log/vmware/vcf/domainmanager/domainmanager.log 
    ERROR [vcf_dm,694..........] [c.v.e.s.o.model.error.ErrorFactory,dm-exec-31]  [#####] NSXT_MANAGER_NON_OPERATIONAL NSX Manager operation status is false on nsxmanager.example.com
com.vmware.evo.sddc.orchestrator.exceptions.OrchTaskException: NSX Manager operation status is false on nsxmanager.example.com
        at com.vmware.vcf.common.fsm.plugins.nsxt.action.DeployNsxtManagerAction.lambda$deployNsxtManager$3(DeployNsxtManagerAction.java:223)
        at com.vmware.vcf.common.fsm.plugins.nsxt.helpers.NsxtCommonOperations.waitForState(NsxtCommonOperations.java:161)
        at com.vmware.vcf.common.fsm.plugins.nsxt.action.DeployNsxtManagerAction.deployNsxtManager(DeployNsxtManagerAction.java:215)
...

     

  • Additionally, attempts to ping the provisioned NSX Manager IP address from the SDDC Manager SSH console fail, confirming a lack of network connectivity.

Environment

  • VMware Cloud Foundation
  • VCF Operations
  • VMware SDDC Manager

Cause

This issue is caused by a network connectivity or segmentation mismatch between the SDDC Manager/Management vCenter network and the assigned NSX Manager Management Network.

Specifically:

  • The IP addresses allocated for the NSX Managers during the import process reside on a network segment that is not routable or reachable from the Management vCenter network (where the SDDC Manager resides).
  • Because the SDDC Manager cannot communicate with the newly deployed NSX Manager appliance to validate its status, the task fails with NSXT_MANAGER_NON_OPERATIONAL.

Resolution

Ensure that the IP addresses allocated for the NSX Managers are on a network segment that allows communication with the Management vCenter and SDDC Manager

Follow these steps:

  1. Verify Network Reachability:
    1. Identify the network segment (VLAN/Subnet) used by the Management vCenter.
    2. Compare this with the segment intended for the NSX Managers.
    3. Ensure that firewall rules or routing allow traffic between these segments, or that they are on the same Layer 2 segment.
  2. Correct IP Allocation:
    1. If the segments are isolated and cannot be routed, you must change the IP allocation for the NSX Managers
    2. Select free IP addresses located in the same network segment as the Management vCenter (or a confirmed reachable segment).
  3. Restart the Import Workload Domain task in the SDDC Manager UI.
Powered by Wolken Software