Users may observe that the IPsec VPN and L2VPN management tabs are missing from the Edge Gateway services UI. This issue typically occurs for VMC deployment types during the upgrade or installation process.

Steps: Provider Portal > Resources > Cloud Resources > Edge Gateways > Services.

• VMware Cloud Director 10.x
• NSX-T Manager (VMC deployment type)

A new capability flag, EDGE_TENANCY_VPN_SERVICE, was introduced in VCD 10.6.1 to manage VPN services on tenancy-enabled Organization VDCs. While this flag is enabled by default for ON_PREM NSX-T configurations, it is not automatically initialized for VMC deployment types during the upgrade or installation process, causing the UI to suppress VPN-related menus.

To resolve this issue, manually enable the missing capability flag using the Cell Management Tool (CMT).

Log in to the primary VMware Cloud Director cell via SSH as root.

Run the following command to enable the VPN service capability for VMC-based deployments:

/opt/vmware/vcloud-director/bin/cell-management-tool manage-config -n capability.vmc.edgeTenancyVpnService -v true

Restart the VMware Cloud Director service on all cells in the cluster for the changes to take effect:

service vmware-vcd restart