• The certificate is not being replaced automatically.
• The proton service is not functioning correctly.

VMware NSX 4.2.1

The certificate expiration check task is a sub-component of the proton service. When the proton service is stopped or fails to initialize properly, the scheduled task for checking appliance certificates is not created or triggered.

To resolve this issue and resume the certificate expiration check service, restart the proton service on the NSX Manager.

1.  Log in to the NSX Manager CLI as a user with administrative privileges.

2.  Restart the proton service using the following command:
    systemctl restart proton

3.  Verify the service has started and monitor the logs to confirm the task initialization message appears. The first check should typically occur 10 minutes after the service starts.

Restarting proton results in the following log being output to /var/log/proton/nsxapi.log:

yyyy-mm-ddThh:mm:ss  INFO WrapperStartStopAppMain ApplianceCertificateExpirationCheckTask 632401 SYSTEM [nsx@6876 comp="nsx-manager" level="INFO" subcomp="manager"] Created periodic certificate expiration instance. Check interval: 86400 Initial delay: 600