Unable to add VMware Cloud Director (VCD) endpoint to VCF Usage Meter 9.x as connection fails with error message - Connection error for <vcd-fqdn>: certificate_unknown(46)
search cancel

Unable to add VMware Cloud Director (VCD) endpoint to VCF Usage Meter 9.x as connection fails with error message - Connection error for <vcd-fqdn>: certificate_unknown(46)

book

Article ID: 428187

calendar_today

Updated On:

Products

VMware Usage Meter

Issue/Introduction

When attempting to add a VMware Cloud Director (VCD) endpoint to the VCF Usage Meter appliance, the connection fails. The following error message is displayed in the Usage Meter UI: Connection error for <vcd-fqdn>: certificate_unknown(46)

Environment

VCF Usage Meter 9.x

Cause

The SSL/TLS handshake between the Usage Meter appliance and the VCD endpoint fails because the VCD server's SSL certificate has expired. Although the network connection is established, the certificate presented by the server is past its validity period.
 

Resolution

  • To verify the certificate expiry, perform the following steps:
(i) Establish an SSH session with Usage Meter appliance. 
(ii) Verify the certificate expiration using the following CLI command: openssl s_client -showcerts -connect <vcd-fqdn>:443
(iii) Check the output for the following error: verify error:num=10:certificate has expired
  • To resolve this issue, you must renew the SSL certificate on the VMware Cloud Director endpoint. Once the new certificate is applied, re-attempt to add the VCD endpoint in the VCF Usage Meter web interface. If the issue still persists, open a case with Broadcom Technical Support team.

Additional Information

Powered by Wolken Software