Aria Ops no longer trusts the Custom certificate chain of vRNI, causing adapter authentication to fail with a 401 error.
search cancel

Aria Ops no longer trusts the Custom certificate chain of vRNI, causing adapter authentication to fail with a 401 error.

book

Article ID: 435792

calendar_today

Updated On:

Products

VCF Operations

Issue/Introduction

Symptoms:
The integration failed because Aria Operations re‑validated SSL trust (likely after a service restart or patch). The vRNI certificate itself is unchanged, but Aria Ops no longer trusts the custom certificate chain, causing adapter authentication to fail with a 401 error.

Following error when try to validate connection for VMware Aria Operations for Networks Adapter:

Untrusted certificate found.
Certificate Thumbprint: ##############################################
Issued to: EMAILADDRESS=#########.##########@########.com, C=FR, ST=IDF, O=###### Inc., CN=#####################.net
Issued by: CN=###### Certificate Authority ######, OU=####### ###, O="#######, Inc.", C=US
Expires: DD MM YYYY ##:##:## TIMEZONE

Test Connection failed. Error Code 401 Unauthorized. Please enter correct credentials and try again.

Environment

Aria Operations 8.18.x

Cause

Sometimes, simply clicking "Accept" on an untrusted leaf certificate during the adapter configuration does not persist through a service restart, especially if the Root CA is missing. We need to add the Custom Certificate chain to Aria Operations global trust store.

Resolution

 

  • Export the Root Certificate and any Intermediate Certificates for the Custom Certificate Authority in Base64 PEM format (.cer or .pem).

  • Import to Aria Operations:

    • Log in to the Aria Operations UI as an administrator.

    • Navigate to Administration > Certificates > Trusted Certificates (Depending on the exact UI view, it may be under Administration > Support > Trusted Certificates).

    • Click Import (or Add).

    • Upload the Root CA and Intermediate CA certificates.

      Note: Ensure to upload the Root CA first, followed by the Intermediate.

Once the certificates are globally trusted:

  1. Go to Data Sources > Integrations > Accounts in Aria Operations.

  2. Select the VMware Aria Operations for Networks adapter instance and click Edit.

  3. Click Validate Connection.

  4. If a prompt appears to review and accept the certificate, click Accept. The connection should now validate successfully.

Powered by Wolken Software