NSX AD event log server reports "Unknown Error"
search cancel

NSX AD event log server reports "Unknown Error"

book

Article ID: 427550

calendar_today

Updated On:

Products

VMware NSX

Issue/Introduction

  • NSX manager reports "Error" for one or more Event Log Servers configured under "NSX Manager UI --> System --> Identity Firewall AD --> LDAP Server --> Event Log Server."

  • Error reports as "Unknown error"

  • LDAP server connectivity shows as UP, But one or more Event log servers reports as "Error"
  • Reauthenticating of Event log server with the same service account reports I/O error.

Environment

VMware NSX

Cause

  • This issue caused due to a connection failure to the Event log server.
    Or
  • Event log server decommissioned and no more active over the network.

Resolution

The Event Log Server monitors Active Directory login events to provide NSX with a real-time mapping of User Identities to IP addresses, enabling the Distributed Firewall to apply security policies based on who the user is rather than just their network location.

  • Make sure the Event log server is active over the network and reachable to the NSX server.
  • If the Event log server is no more active and decommissioned, Perform the deletion of particular Event log server.
Powered by Wolken Software