• VMware vRealize Lifecycle Manager / VMware Aria Suite Lifecycle deployment fails from VCF / SDDC Manager on the step "Request and Configure VMware Aria Suite Lifecycle SSL Certificate".
• In /var/log/vmware/vcf/domainmanager/domainmanager.log a similar snippet may be found:

REPLACE_VRSLCM_CERTIFICATES_FAILED Replacing vRealize Suite Lifecycle Manager certificates failed.
com.vmware.evo.sddc.orchestrator.exceptions.OrchTaskException: Replacing vRealize Suite Lifecycle Manager certificates failed.
at com.vmware.evo.sddc.vrealize.vrslcm.GenerateVrslcmCertificate.uploadCertificateToVrslcm(GenerateVrslcmCertificate.java:223)

• The remediation message is to check the jumbo frames between SDDC manager network and Aria Suite Lifecycle appliance network.
  • However, there are no packet drops, ping tests are successful, and no network connectivity issues. 

VCF 4.x and VCF 5.0

• Тhere is a known OpenSSL issue with versions prior to 1.1.x where a certificate that has lines longer than 64 characters can't be loaded properly - "unable to load certificate" error is thrown by the toolkit (https://github.com/openssl/openssl/issues/9187).
• Тhe problem occurs when the customer sets an Aria Suite Lifecycle appliance FQDN that is longer than 32 characters when configuring the inputs for the deployment in SDDC Manager UI.

This is resolved in VMware Cloud Foundation 5.1 and above.

Workaround:

• Specify an Aria Suite Lifecycle appliance FQDN that is less than 32 characters.