Task: Install VMware Aria Operations for Logs Content Packs for Management Domain

Status: Failed 

Description: Install VMware Aria Operations for Logs Content Packs for Management Domain

Progress Messages: A problem has occurred on the server. Please retry or contact the service provider and provide the reference token.

Error Message: A problem has occurred on the server. Please retry or contact the service provider and provide the reference token.

Cause: Error while creating VMware Aria Operations for Logs session Certificate for <#########> doesn't match any of the subject alternative names: []

The error message complains about the SAN name missing on the Machine SSL for VRLI. 

Upon validating the VRLI certificate, we do see the SAN name entry missing or NULL. 

The failure occurs during the establishment of a secure connection between the Management Domain and the VMware Aria Operations for Logs (formerly vRealize Log Insight) instance. The underlying issue is twofold:

Hostname Mismatch: Modern security protocols require that the server's Fully Qualified Domain Name (FQDN) which should be explicitly listed in the Subject Alternative Name (SAN) field of the SSL certificate.

Empty SAN Field: The current Machine SSL certificate installed on the VRLI node has a null or empty SAN attribute. Because the hostname being called does not match any entry in the certificate's SAN list, the Java-based connection client (SunCertPathBuilder) terminates the session. 

Apply kb: Install a self-signed (custom) certificate in VMware Aria Operations for Logs to install the certificates for VRLI

Once above is done, restart the task on the SDDC Manager