An error occurs during deployment validation by the VCF installer indicating that the rootCaCerts in the securitySpec is missing.
search cancel

An error occurs during deployment validation by the VCF installer indicating that the rootCaCerts in the securitySpec is missing.

book

Article ID: 441362

calendar_today

Updated On:

Products

VMware SDDC Manager / VCF Installer

Issue/Introduction

  • During deployment validation using the VCF Installer, the following error occurs:
"Found either a blank value or missing entry that is mandatory in the configuration file. ESX certificate mode is set to Custom, but rootCaCerts list is missing for Security Specification
Remediation: Provide rootCaCerts list in Security Specification"
  • In the JSON file used for deployment, esxiCertsMode is set to VMCA within the securitySpec section.
"securitySpec": {
        "esxiCertsMode": "VMCA",
        "rootCaCerts": []
    },

Environment

VCF Installer 9.1.0.0

Cause

In VCF Installer 9.1.0.0, the securitySpec section is specifically used for validating Custom certificates.
The installer currently does not account for configurations where esxiCertsMode is set to VMCA, which triggers the validation error.

Resolution

If you are using VMCA, remove the entire securitySpec block from the configuration and proceed with the deployment.

Additional Information

VCF installer によるデプロイ検証時に securitySpec の rootCaCerts が欠落していることを示すエラーが発生する

Powered by Wolken Software