VMware Aria Orchestrator 8.x fails to connect to RabbitMQ using TLS 1.3
search cancel

VMware Aria Orchestrator 8.x fails to connect to RabbitMQ using TLS 1.3

book

Article ID: 427111

calendar_today

Updated On:

Products

VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

  • When integrating VMware Aria Orchestrator with RabbitMQ using the AMQP plug-in, the workflows fail during execution.
    The failure occurs with the following error message:
received fatal(2) protocol_version(70) alert
  • This issue is observed when RabbitMQ is configured to use a FIPS-enabled TLS 1.3 environment. By default, Aria Orchestrator does not automatically negotiate TLS 1.3 for AMQP connections, leading to a protocol mismatch and workflow failures.

Environment

Aria Automation Orchestrator 8.18.x
Aria Automation 8.18.x

Resolution

To enable TLS 1.3 support for the AMQP plug-in in Aria Orchestrator, explicitly configure the SSL context protocol by setting the following system property:
 
vracli vro properties set -k o11n.plugin.amqp.ssl-context-protocol -v TLSv1.3
 

Additional Information

TLS 1.3 support for the AMQP plug-in is documented in the official VMware Aria Automation documentation: TLS1.3 support in the AMQP plug-in
 
This configuration allows VMware Aria Orchestrator workflows to run successfully in a FIPS-enabled TLS 1.3 RabbitMQ environment.
Powered by Wolken Software