Cannot access vCenter 6 licenses after the replacement of certificate

Hi all

Ive just replaced my vcenter 6 solution user certificates by using the Certificate Manager tool and computer. All seemed well, until when I unplugged my host in the cluster and when I try to reconnnect, brings me an error on my ssl certificate licensing, saying that my certificate in use is a less secure version lower than 3.

I tried to access home > license option but the samr error jumped. Then I went to check the certificates that I used and found that they were indeed v1 certificates. However, the generation of the certificate request was made automatically by the tool. I don't have a choice to select the version used. Is this expected behavior? Or is there a way I can change the Certificate Manager to generate a v3 certificate requests? Or is it a totally different problem altogether.

After a repair, we discovered that the admin of certificate uses the default settings and published the cert for us, which did not include the required extensions for a v3 cert. This caused the vcenter unable to access the license characteristics option.

A resignation of the cert with additional extensions were made and has been used to replace the previous CERT using Certificate Manager. This solves our problem

Tags: VMware

Similar Questions

  • Cannot save vSphere Web Client after the replacement of the SSL certificate

    Hi all

    I have followed the Articles of Derek Seaman on the replacement of all the certificates in vSphere 5.1 and have since turned to the VMware KB Articles. I replaced the certificates for the SSO, the inventory Service and vCenter Server with no problems (other than having to use OpenSSL-Win64 for vCenter certificate that I could not get the x 86 version certificate of work, makes no sense, but I'll take the small victory).

    If you follow the guide of vmware to replace the web service certificate, http://kb.vmware.com/selfservice/microsites/search.do?cmd=displayKC & docType = kc & docTypeID = DT_KB_1_1 & externalId = 2035010, I get to step 12, enter the VMware vSphere Client Web back to vCenter Single Sign On and the following error:

    ##########################

    D:\Program Files\VMware\Infrastructure\vSphereWebClient\SsoRegTool > regTool.cmd registerService - cert "C:\ProgramData\VMware\vSphere Web Client\ssl" - ls - url ( https://(Server URL): 7444/lookupservice/sdk - username admin@system-domain - password (password) - dir 'D:\Program Files\VMware\Infrastructure\vSphereWebClient\SsoRegTool\sso_conf' - ip "*." ' * ' - serviceId-file 'D:\Program Files\VMware\Infrastructure\vSphereWebClient\serviceId'

    No file properties not found
    Initialization of provider of record...
    SSL certificates for https://vsphere.au.ray.com:7444/lookupservice/sdk
    SSL certificates for https://vsphere.au.ray.com:7444 / sso-adminserver/sdk
    Unhandled exception trying to escape: null
    Return code is: OperationFailed
    100

    ##########################

    VMware technical support suggested I uninstall all components, delete all databases and try again. I have done this and have exactly the same result.

    Has anyone seen elsewhere or managed to solve?

    Chris

    So, I managed to solve this problem. Not sure that this applies to everyone, but my problem was caused by registering using among other names of the subject in the SSL certificate for the SSO rather than the common name of the certificate.

    For example, the server name is server1.company.com. It is the common name of the certificate. But one of SAN of the certificate has been "vSphere.company.com".  If I used this other name in one of the component records that they would fail. I found that I have to use the common name. Even if the alternative names of job access to via your browser web, there is no certificate warning, if the registration of components using these names, it would fail.

    It seems crazy that you can use any of the San... then why allow us to make?

    Initially, I tried to replace the authentication certificate ONLY when the town was called vsphere.company.com, rather than the hostname of the server, and which is installed. However, try to install the Web Client would fail. When you come to the step where you have to accept the certificate of SSO, the installation fails because the common name of the certificate does not have the host name of the SSO server. It seems insane to me... why the host name of the server running the SSO should still come in when all calls are over HTTPS is simply absurd!

    I confirmed this with VMware Technical Support and they checked my conclusions.

  • Cannot access local disk c after the healing of the bone!

    I recently did a system recovery using the CD provided by the manufacturer, and after that I could not access my main C: partition directly, although I could type the address of a folder in C: into the address such as "C:\Program Files\" bar and access it normally but when I double click the icon in my computer I get an error that says "C:\ is not accessible. Access is denied. " This problem occurs during the installation of programs which need to install files in C:, they may not install correctly and so I can not install any programs until I have a solution for this.

    -I am an administrator on the computer if it matters.

    Hello mohamed090909,

    Thanks for posting your question on the Microsoft answers Forum.

    I'll first see if you have a system restore point to restore from before you couldn't access C:\.
    Use the following steps from the article below:
    936212 KB - how to repair the operating system and how to restore the configuration of the operating system to an earlier point in time in Windows Vista
    http://support.Microsoft.com/kb/936212

    If you do not have a restore point available system, then look at the permissions at the root of C:\. You will have to take possession of the root and all
    records and then possibly to set permissions to read all files.
    It is a good tutorial for the ownership and file permissions.
    http://www.vista4beginners.com/change-permissions-take-ownership

    Go to your C:\ drive and check the security permissions.

    System and administrators: to allow for the following permissions:
    Change
    Read & Execute
    Content of the file
    Read
    To write

    Users: To allow for the following permissions
    Loan & run
    Content of the file
    Read

    Authenticated users - special permissions

    Note that when you take possession of the files you need to disconnect then
    log on or restart the computer before you can modify the permissions.

    You could also do a upgrade in place to repair the operating system, but you don't need an installation DVD disc and not an OEM recovery disk.

    If please reply back and let us know if it helped to solve your problem or if you still need help.

    Sincerely,
    Marilyn
    Microsoft Answers Support Engineer
    Visit our Microsoft answers feedback Forum and let us know what you think.

  • Cannot access local data store after the upgrade to build 158869

    I've been running ESXi 3.5 on a Dell Optiplex GX620 (A07 BIOS, a single SATA hard drive) for a few months now.  This morning, I applied the update version 158869 in the system with the Infrastructure Update and rebooted, it.  In the Infrastructure of the customer, I now get a banner stating "VMware ESX Server has no persistent storage" and I'm unable to access the local storage on the system.  I have tried rebooting, changing the SATA operation mode and a rescan for new devices storare and VMFS volumes, all nothing will do.

    Does anyone have any ideas on how I could get the server to see the data again, store or otherwise, what would be the best way to mount the drive in another system and copy virtual machines off of it?

    Welcome to the VMware community forums.  See if that helps - http://www.vm-help.com/esx/esx3i/no_persistent_storage_after_upgrade.php.

  • Cannot start installation of recovery after the replacement of HDD - Satellite A10

    I have a satellite a10, I bought a new hard drive on ebay brand new in the package and it's a 40 GB with the Toshiba name thereon. I took the old 30 GB and put in the drive.

    Put in the original recovery CD, I got with the laptop and get the screen: "WEelcome to the toshiba recovery utility" etc, etc. HIT F1 ok but nothing happens,
    Any thoughts?

    Recovery at startup press 1 procedure and not F1 for installation in Standard mode.

  • Windows 7 Home Basic will be activated not after the replacement of the motherboard has failed

    Hello

    My cousin has a copy available from Win7 Home Basic SP1 64-bit, which is an OEM pack and geographically limited in India.
    Recently, the desktop motherboard has developed a fault and it was replaced by the seller that it was under warranty (so assuming that to be the same brand and model of origin).
    After the replacement, he receives a prompt from time to time that the version of Windows is not genuine and a new product key must be purchased which means buying a new copy of Windows altogether.
    I tried to help him with his number and did some research on the microsoft Web site. I tried reactivate using the same product key, but get the message that the hardware has changed and the same key cannot be used. I also tried to use the phone activation method - but after entering all numbers of 9 series a message is read on that there is a technical error and the appeal is terminated. (But he does not say why the version of Windows cannot be enabled)
    I came across the following post which seems to suggest that the same product key can be used as long the motherboard is replaced for a foul and the brand and the model have not changed.
    http://answers.Microsoft.com/en-us/Windows/Forum/Windows_7-windows_install/after-replacing-my-failed-motherboard-Windows-7/b547458e-a1ae-45df-AE4C-e4d191fc8e6a
    I would like to know if there is a way to validate the Windows version now. We are concerned that both the computer and the BONES are authentic copies and licensed and it is not just that we need to get a new product key. I would like to know if there is a phone number or address of Microsoft office in India or abroad with which we can express our concerns.
    Thank you

    How to activate Windows 7 manually (activate by phone)

    1) click Start and in the search for box type: slui.exe 4

    (2) press the ENTER"" key.

    (3) select your "country" in the list.

    (4) choose the option "activate phone".

    5) stay on the phone (do not meet all the automatic guests) and wait for a person to help you with the activation.

    (6) explain your problem clearly to the support person.

  • Cannot access my Comcast mail since the last update. I can access it from Safari and Microsoft Windows, but generally do not either of these browsers use

    Cannot access my Comcast mail since the last update. I can access it from Safari and Microsoft Windows, but generally do not use either of these browsers. I chatted with Comcast and they are the ones who asked me to try to gain access to other browsers. And, as noted, I managed. Only my opening my email to Comcast.net inhibits the Firefox, the browser that I use on a regular basis because of this problem I can't use Firefox.

    The reset Firefox feature can solve a lot of problems in restaurant Firefox to its factory default condition while saving your vital information.
    Note: This will make you lose all the Extensions, open Web sites and preferences.

    To reset Firefox, perform the following steps:

    1. Go to Firefox > help > troubleshooting information.
    2. Click on the button 'Reset Firefox'.
    3. Firefox will close and reset. After Firefox is finished, it will display a window with the imported information. Click Finish.
    4. Firefox opens with all the default settings applied.

    Information can be found in the article Firefox Refresh - reset the settings and Add-ons .

    This solve your problems? Please report to us!

  • BitLocker - encrypt - decrypt cycle after the replacement of the motherboard?

    After replacing the motherboard of your laptop with BitLocker encryption, the system requires a recovery key. Once inside, connect us to the system as long as decrypt it administrator local to turn off BitLocker and, once finished, activate BitLocker.

    This whole process of disabling and enabling BitLocker may take up to an hour to complete, during which the laptop can not be used by the user.

    Is it there anyway that we can re - initialize BitLocker, after a motherboard replacement, without all the decrypt / encrypt process?
    While the time that the system cannot be used is reduced to just a few minutes?

    Hi Dennis,

    Thanks for posting your query in Microsoft Community.

    I am afraid that you cannot re - initialize the BitLocker after the replacement of the motherboard as the TPM secure is removed or changed. A TPM Module (TPM) is a chip that is integrated into a computer. It is used to store cryptographic information, such as encryption keys. Information stored on the TPM chip may be more secure from external software attacks and physical theft. BitLocker uses the TPM module to help protect the Windows operating system and user data and to ensure that a computer is not tampered with, even if it is left unattended, lost or stolen.

    If your new motherboard does not have the required by the BitLocker TPM, you can refer to the section can I use BitLocker on an operating system without a TPM Reader? in the following article and follow the steps.

    BitLocker frequently asked Questions (FAQ) 

    Hope this information is useful. Let us know if you need more help, we will be happy to help you.

  • After the replacement of my iPhone screen 6, front facing camera does not work.

    After the replacement of my iPhone screen 6, front facing camera does not work. The rear camera works fine, but when I switch to selfie cam I saw a still image of what was on the camera back; and on snapchat it simply refuses to move to selfie cam. I check to make sure that all connectors are deep-set. Any suggestions?

    If someone else that Apple will replace your screen they screwed up. If Apple has replaced your take screen back to the store.

  • HP Photosmart C6280: cannot print on C6280 wireless after the upgrade to Windows 10

    Cannot print on C6280 wireless after the upgrade to Windows 10. Have removed the device, but try to re install the printer when is not found. Can print if I connect USB. Tried to reload the driver using HP Support software help, but when he arrives at the end of the download fails.

    Hi @Ron9871,

    Welcome to the Forums of HP Support!

    I see that you are unable to get your printer HP Photosmart C6280 wireless printing. I'd be happy to help you and don't forget to come back to this thread and check "Accept as Solution", if I have successfully helped solve you the problem. If you want to say 'Thank you' to my effort to help, click on the "thumbs up" to give me a Kudos.

    I would like to try the steps in this guide, "offline" Status Message printer (Windows 10).

    If the problem persists, you may encounter an IP address conflict. It's a good idea to assign the printer a static IP address outside your DHCP range. For example, some routers default DHCP is located between 192.168.0.100 to 192.168.0.200. So, I would use 192.168.0.232.

    • Print a Page of Network Configuration menu of the printer front panel. Note: the IPV4 IP.
    • Type the IP address in the browser to bring up the SAP.
    • Choose the network tab, then wireless on the left side, and then select the IPv4 tab.
    • Select Manual IP.
    • Enter your IP address manual (192.168.0.232)
    • Enter 255.255.255.0 for the subnet mask, except if it is different.
    • Enter the IP address of your router that sits on the Network Configuration Page) for the default gateway.
    • Please, click on manual DNS server. For the preferred DNS Server Manual please enter 8.8.8.8 and the Alternate DNS Server Manual, please enter 8.8.4.4.
    • Click on apply.

    Please restart the router, the printer and the computer in this sequence.

    If you're still having problems, please download and run the print and Scan doctor, it will be probably diagnose and fix the problem you are experiencing.

    What were the results when you ran the Print and Scan Doctor? (she print or scan, error messages)

    You can try to change your WSD printer port by a Standard TCP/IP port.

    To do this, you will need your current IP address printers.  The Network Setup page shows the parameters of network for the product. To print this page; Press the button of network () on the control panel of the product.

     

  • Cannot update Windows XP Pro after the reinstallation of the Message, the website has encountered a problem and cannot display the page you are trying to view. There is no error code displayed

    Cannot update Windows XP Pro after the reinstallation of the Message, the website has encountered a problem and cannot display the page you are trying to view. The error number is 0x8024400A.

    Should I turn off my Anti virus software is what could be stopping my updates? some sites would sugest that I use Kaspersky 2012, if that's the case, then why do all my other programs that are installed to date OK?

    Hello

    Check your level of service current pack...

    • Hold down the Windows (between Ctrl and Alt) key and press Pause break
    • Examine what is listed in the system: section

    If there is no service pack designated first level you must download SP2 from...

    http://www.Microsoft.com/download/en/details.aspx?displaylang=en&ID=28

    .. .and then run the downloaded program to install SP2.

    Once you have done this, or if you were already in service pack 1, 1a or 2, then install SP3 by downloading and running from...

    http://www.Microsoft.com/download/en/details.aspx?displaylang=en&ID=24

    For both of the above, you can ignore the text that says it's for network installations and also ignore the text advising windows/microsoft update if a single update of a PC.

    So try and get up-to-date with the Windows updates.

    Tricky

  • I can see other computers on a network of peer to peer windows XP but cannot access their shared files and the shared printer.

    I can see other computers on a network of peer to peer windows XP but cannot access their shared files and the shared printer. The computers are connected by a switch, fixed IP addresses that are correctly configured and point to a DNS server outside the network. When I try to open the icon for one of the computers, he asked for credentials. I try to type the user name for the computer that is sharing the resource and the password. It is the user account whose computer is loged on and belongs to the Administrators group. for example: user name (Computer1\username) password (password). It does not work. The Windows Firewall is disabled on all computers. It worked well there 2 days. I can't find anything wrong with the network settings. Does anyone have a solution? Thank you.

    If the portion of the machine has activated - Simple file sharing (i.e. it is XP Home or it is XP Pro with Simple (default) file sharing) - while all file sharing connections authenticate as user 'guest '.  It will not matter what username / password you provide, it will attempt to authenticate as 'guest '.  If the guest user has received a password or the guest account is not active, you will experience the symptoms you describe.

    If the serving machine running XP Pro and Simple file sharing is disabled, then you should be able to connect by specifying the user as computer\user and the password to connect.  To turn off Simple file sharing:

    "How to disable the file sharing simple and how to set permissions on a shared folder in Windows XP"
      <>http://support.Microsoft.com/kb/307874 >

    Also:
    "Description of the account in Windows XP"
      <>http://support.Microsoft.com/kb/300489 >

    HTH,
    JW

  • Cannot access Windows Update because of the error [error number: 0xC800042D].

    Cannot access Windows Update because of the error [error number: 0xC800042D].

    Hi RetCoach,

    Please take a look at the following thread as it's the same problem that you are experiencing:
    There is also an article in connection with things to try:
    Hope these helps.

  • Can not connect - when entering a password message "the service user profile service has no logon. Failed to load profile \User' cannot access start menu to apply the options.

    Can not connect - when entering a password message "the service user profile service has no logon. Failed to load profile \User' cannot access start menu to apply the options.

    Hello

    1st thing to try is the system in safe mode restore to before the problem

    http://www.windowsvistauserguide.com/system_restore.htm

    Windows Vista

    Using the F8 method:

    1. Restart your computer.
    2. When the computer starts, you will see your computer hardware are listed. When you see this information begins to tap theF8 key repeatedly until you are presented with theBoot Options Advanced Windows Vista.
    3. Select the Safe Mode option with the arrow keys.
    4. Then press enter on your keyboard to start mode without failure of Vista.
    5. To start Windows, you'll be a typical logon screen. Connect to your computer and Vista goes into safe mode.
    6. Do whatever tasks you need and when you are done, reboot to return to normal mode.

    If that does not solve it read more

    read the tutorial below

    http://www.Vistax64.com/tutorials/130095-user-profile-service-failed-logon-user-profile-cannot-loaded.html

    When you log on a Windows Vista-based or a Windows 7 computer by using a temporary profile, you receive the following error message:

    The user profile Service has not logon. User profile cannot be loaded.

    http://support.Microsoft.com/kb/947215#letmefixit

    Your user profile was not loaded correctly! You have been logged on with a temporary profile.

    http://support.Microsoft.com/kb/947242

    If you tried to log on to Windows and received an error message telling you that your user profile is damaged, you can try to fix it. You will need to create a new profile and then copy the files from the existing to the new profile. You must have at least three user accounts on the computer to perform these operations, including the new account that you created.

    http://Windows.Microsoft.com/en-us/Windows-Vista/fix-a-corrupted-user-profile

  • Cannot access any shared folder on the network of windows 7 Professional

    Hello

    I have a very strange problem.

    I have a home network with 4 computers.
    I can share files from any computer to the other.

    Recently, I bought a new laptop Lenovo E530 in with Windows 7 Professional installed on it.
    The problem is that I can't access any shared folder on my home network by '\\com-name '.
    I cannot yet access the folders on the computer that is shared from the inside, by specifying there name with the prefix "\".
    However, I can ping or even make remote desktop on other computers on my network.
    I can also access shared folders on my Windows 7 Professional from other computers.
    Looks like there is something wrong with the configuration of my OS from Windows 7 Professional blocking access to any shared folder on my network.
    I get the following error message:
    Windows cannot access \\comp-name
    Check the spelling of the name. Otherwise, it could...
    Error code: 0 x 80070035
    The network path was not found.
    I tried to use the button to diagnose, but without success.
    Help, please
    Dudi.

    Hello

    I suggest you try all the steps from the following link:

    Sharing of files and printers
    http://Windows.Microsoft.com/en-in/Windows/sharing-files-printers-help#sharing-files-and-printers=Windows-7&V1H=win8tab1&V2H=win7tab1&V3H=winvistatab1&v4h=winxptab1

    See also: File and printer sharing: frequently asked questions
    http://Windows.Microsoft.com/en-in/Windows7/file-and-printer-sharing-frequently-asked-questions

    Hope this information is helpful and let us know if you need more assistance. We will be happy to help.

Maybe you are looking for