The User Interface (UI) is inaccessible after you upgrade to VCF Operations for Logs 9.0.2. You find the Cassandra service fails to start on one or more nodes, resulting in a degraded cluster state.
State: degraded
Status=Up/Down|/ State=Normal/Leaving/Joining/Moving
-- Address Load Tokens Owns (effective) Host ID Rack UN ##.##.##.## 18.32 MiB 256 100.0% [UUID] rack1 DN ##.##.##.## ? 256 100.0% [UUID] rack1 DN ##.##.##.## ? 256 100.0% [UUID] rack1
Inventory Sync through Fleet Manager for VCF Operations for logs, the operation fails with the following error:
Error Code: LCMVRLICONFIG40100
Operations-logs host is unreachable. Either the host name is incorrect or the virtual machine is not reachable.Unable to connect to host. Check host details and retry.
You will see similar exception below in /storage/var/loginsight/cassandra.log
ERROR [Messaging-EventLoop-#-#] ####-##-##T##:##,OutboundConnectionInitiator.java:### - Failed to handshake with peer /<VCFOperationsForLogs_WorkerIp>:7000(/<VCFOperationsForLogs_WorkerIp>:7000)at io.netty.handler.codec.DecoderException: javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_unknown
or
ERROR [Messaging-EventLoop-3-3] ####-##-##T##:##:##, InboundConnectionInitiator.java:### - Failed to properly handshake with peer /##.###.##.##:39412. Closing the channel.
io.netty.handler.codec.DecoderException: javax.net.ssl.SSLHandshakeException: PKIX path validation failed: java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors
VCF Operations for Logs 9.0.2
This issue occurs due to a keystore and trust store mismatch between the Primary and worker nodes, preventing secure communication between the Cassandra instances.
To resolve this issue, you must synchronize the certificates across the cluster nodes: