Problems with Syslog cmdlets
I get the following error messages on the two cmdlets get - and whole-ESX3 and vSphere 4 guests.
Get-VMHostSysLogServer: 2009-07-30 10:01:32 Get-VMHostSysLogServer E8A
SysLogServer CD8C4-D9D9-4379-A13C-6BA03D57CF42 is not supported for host ' ph
ovmware03.FBFS.com'.
Line: 1 char: 23
+ get-VMHostSysLogServer & lt; & lt; & lt; & lt; -VMHost 'phovmware03.fbfs.com '.
-or-
Game-VMHostSysLogServer: 2009-07-30 10:00:58 Set-VMHostSysLogServer E8A
SysLogServer CD8C4-D9D9-4379-A13C-6BA03D57CF42 is not supported for host ' ph
ovmware03.FBFS.com'.
Line: 1 char: 23
+ set-VMHostSysLogServer & lt; & lt; & lt; & lt; SysLogServer - 172.28.132.55:514 - VMHost ' phovmwa
re03.FBFS.com'
My goal is to configure syslogging on 40-some guests, and I don't want to configure firewall rules, configure the /etc/syslog.conf file and restart syslog individually for this or edit my process of future generation with several manual procedures. You see what I'm doing wrong? Also what is sent to the syslog server what priorities or syslog configuration? I'm only interested in auth.info for now. Thank you.
This host server is supported for Get-VMHostSyslogServer explain what you see?
Tags: VMware
Similar Questions
-
Problem with the cmdlet Remove-Snapshot
Hello everyone,
I have a problem with the cmdlet Remove-Snapshot: it fails to remove the snapshot when I made a copy of file (Copy-Item) between calls to New-Snapshot and Remove-Snapshot if (and only if) I put - confirm option to $false. If - confirm is $true everything works, but it does not allow me to run the non-interactive script. The error that is returned is "vim.fault.InvalidVmConfig".
Anyone know if there is a problem on my side, on the side of ESX Server or a bug in the VI Toolkit? Any possible workaround?
I have attached the PowerShell script, I used to reproduce the error and the script log file that contains the error message.
The versions I used are:
VMware.Vim.dll (1.5.0.1299, "VI API 1.5.0 build.Net 142961")
VMware ESX Server 3i, 3.5.0 110271
I'm not able to reproduce this on my environment but I am sure that the issue is not with the - confirm: $false parameter. After you copy the file there is a timeout that is set to 10 seconds. Can you increase it (even if I do not at all see a reason of this time-out) and see what happens?
\Yavor
-
Local data store renaming problem with the cmdlet set-datastore
Hiya,
I just started using powercli to configure my ESX Servers 4.1i.
Most of my script version works fine - but I can't rename the local data store.
I do a get-data store based on the name that works very well, I then pipe series-store data with a new name-, but it just seems to ignore the order and leave it with the old name.
No error message is produced.
I pasted in the results of the "get-data store" (just to show that it exists) and the results of the 'get-datastore piped to set-data store", below.
I'm sure I'm missing something really obvious - but I do not know what?
[vSphere PowerCLI] D:\powershell > get-datastore-name 'test1' | fl
DatacenterId: Datacenter-ha-datacenter
Datacenter: ha-datacenter
ParentFolderId: Folder-ha-folder-datastore
ParentFolder: datastore
DatastoreBrowserPath: vmstores:\ohst213vmh.blah.co.uk@443\ha-datacenter\test1
FreeSpaceMB: 64207
CapacityMB: 64768
Accessible: true
Type: VMFS
ExtensionData: VMware.Vim.Datastore
ID:-Datastore-4d4c2877-c48e1465-b0be - 00237d 358458
Name: test1
UID: /[email protected]:443 / Datastore = Datastore-4d4c2877-c48e1465-b0be-002
37d 358458.[vSphere PowerCLI] D:\powershell > get-datastore-name "test1" |-store game data-name 'test2' | fl
DatacenterId: Datacenter-ha-datacenter
Datacenter: ha-datacenter
ParentFolderId: Folder-ha-folder-datastore
ParentFolder: datastore
DatastoreBrowserPath: vmstores:\ohst213vmh.blah.co.uk@443\ha-datacenter\test1
FreeSpaceMB: 64207
CapacityMB: 64768
Accessible: true
Type: VMFS
ExtensionData: VMware.Vim.Datastore
ID:-Datastore-4d4c2877-c48e1465-b0be - 00237d 358458
Name: test1
UID: /[email protected]:443 / Datastore = Datastore-4d4c2877-c48e1465-b0be-002
37d 358458.See you soon
Jordan
When you add a server ESX to vCenter, agent VirtualCenter (vpxa) service is installed on the ESX Server.
All actions you take in the vSphere ESX server customer or a PowerCLI script when you are connected to the vCenter, passed through this vpxa service. This service manages the resources on the ESX Server.
To avoid problems when you change some resources directly from the COS of ESX, vpxa services locks these resources.
That's why you can not change the datastorename when you are connected directly to an ESX Server that has been added to a vCenter.
BTW, if you connect a vSphere client directly to the ESX Server, you will see the same phenomena as what you see in your script PowerCLI.
If you need to change the datastorename locally on the ESX for some reason, you can try to remove the ESX Server with Remove-VMHost to vCenter, connect to the server with Connect-VIServer ESX, make your changes and add it to the vCenter with Add-VMHost.
-
Problem with syslog configuration
I have two servers ESXi 4, and both are configured for syslog in the same way under Configuration/advanced/Syslog. A single server works well, however, the other is not. They are both reporting to my server syslog on port 514, but on a single server, I see the OLD log files (back when I put in place I think) at the Syslog.Local.Datastorepath location of:
[] / vmfs/volumes/4c12e308-3647efed-7e2c-78e7d193adfa/log/messages
When I get a command line and look at these files, I see that they are not current:
~ # cd/vmfs/volumes/4c12e308-3647efed-7e2c-78e7d193adfa/log/ vmfs/volumes/4c12e308-3647efed-7e2c-78e7d193adfa/log # ls - ladrwxr-xr-x 1 root root 8 1 January 1970.drwxr-xr-x 1 root root 8 1 January 1970...-rwx - messages of 1 root root 356768 March 28, 2011-rwx - 1 root root 982191 March 28, 2011 messages.0-rwx - 1 root root 68722 March 28, 2011 messages.0.gz-rwx - 1 root root 68594 March 28, 2011 messages.1.gz-rwx - 1 root root 72064 March 28, 2011 messages.2.gz-rwx - 1 root root 65109 March 28, 2011 messages.3.gz-rwx - 1 root root 69308 March 28, 2011 messages.4.gz-rwx - 1 root root 72136 March 28, 2011 messages.5.gz-rwx - 1 root root 72382 March 28, 2011 messages.6.gz-rwx - 1 root root 74818 March 28, 2011 messages.7.gz/ vmfs/volumes/4c12e308-3647efed-7e2c-78e7d193adfa/log #.Where should I start troubleshooting? My server itself today cut without reason and I need determine why. Of course, it is too late for now, but if/when it happens again, I want it on my syslog server.syslogd could have stopped on this host. Check syslogd and start if its stopped.
http://paulgrevink.WordPress.com/2011/04/05/ESXi-how-to-start-syslogd/
-
Why we have stupid fundamental problems with firefox?
I have jre1.6_u31 installed on a Windows 7 and the brilliant
Firefox keep telling me I need to install the plugin missing jre_1.6_u29 when I try to run an applet... a simple applet! The plugin does not appear on the Add-ons Manager then I use 'Check your plugins' and the stupid answer is: "for your security, Firefox has disabled your outdated version of Java. Please install the latest version. »
Run a cmdlet is basic! Why do you do new versions when more old is better? I'm sick of hitting this stupid problems with firefox! Everything works on ie, chrome, and safari but not Firefox!
I'm sick of trying to solve the basic problems of firefox!
We have a site that has a thousand ore more visits per day... and we only trouble with firefox! What I tell the customers? I'm not going to give them difficult and confusing solutions that your solutions are usually! They are not developers as ordinary people me... they want just that things work! I dropped it and the solution that I give to them now is to stop using firefox and uninstall it. And people ask I chrome becomes the second most used browser... Here's your answer...
I'm a developer and I develop I do not have the patient of time trying to solve the basic problems of firefox. If you don't know how to solve problems and then stop to develop it and save us headache.Have you updated Java lately? You say that you have jre1.6_u31 installed, but 'Java (TM) Platform SE 6 U31' does not appear in the folder Plugins with your question (click on "Details of the system more" right of your original message of the question). To activate, addons > Plugins and enable the item.
If your OS is 64-bit, and you have 32-bit browsers (Firefox) and 64-bit installed browsers, then you must install the 32-bit and 64-bit Java.
Older versions of Java blocked in Firefox -> https://addons.mozilla.org/en-US/firefox/blocked/p80
Help/update Java -> install or update Java in Firefox
Release of Java -> https://support.mozilla.org/en-US/kb/unblocking-java-pluginIf this answer solved your problem, please click 'Solved It' next to this response when connected to the forum.
-
Problem with Cisco requested orders IOS CLI
So I try to reload the router with EEM. However, I want it done via the cli action statement, so I can delay the cooldown to 10. However, I have problems with the model keyword. Here's my applet and debugging. It seems that the declaration of model does not meet what is asked. I've tried several different combinations, but this one made the most sense to me.
Event Manager applet
event no
message from syslog to action 1.0 "router Reload."
command action 1.1 cli 'enable '.
model "reload in 10" action 1.3 cli command 'yes '.
command action 1.5 cli "confirm".
action syslog 1.7 msg "it worked!"
* 1 Mar 00:37:18.831: % HA_EM-6-LOG: TEST: reload router
* 00:37:18.839 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): CTL: called cli_open.
* 1 Mar 00:37:18.939: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUTSIDE:
* 1 Mar 00:37:18.939: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUT: R2 >
* 00:37:18.939 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): IN: R2 > activate
* 1 Mar 00:37:18.955: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUTSIDE:
* 1 Mar 00:37:18.955: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUT: R2 #.
* 00:37:18.955 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): IN: R2 #reload in 10
* 00:37:18.967 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): IN: confirm
R2 #.
R2 #.
* 1 Mar 00:37:38.879: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUTSIDE:
* 00:37:38.879 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUT: % If please answer 'yes' or 'no '.
* 1 Mar 00:37:38.879: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUTSIDE:
* 00:37:38.879 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUT: the system configuration has changed. Save? [Yes/No]:
* 00:37:38.879 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): CTL: called cli_close.
The manual way:
R2 #reload in 10
The system configuration has changed. Save? [Yes/No]: Yes
Building configuration...
[OK]
Recharge regular in 10 minutes by the console
Reload reason: reload command
Proceed to recharge? [confirm]
R2 #.
* 00:56:27.083 Mar 1: % SYS-5-SCHEDULED_RELOAD: Reload asked at 01:06:22 UTC Friday, March 1, 2002 at 00:56:22 UTC Friday, March 1, 2002 by the console. Reason for reload: reload the command.I tried this:
Event Manager applet
event no
message from syslog to action 1.0 "router Reload."
command action 1.1 cli 'enable '.
Action 1.2 cli command "wr".
model "reload in 10" action 1.3 cli command "confirm".
action syslog 1.7 msg "it worked!"
!
endR2 #.
R2 #.
#event R2 Manager run TEST* 1 Mar 00:54:52.855: % HA_EM-6-LOG: TEST: reload router
R2 #.
* 00:54:52.863 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): CTL: called cli_open.
* 1 Mar 00:54:52.963: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUTSIDE:
* 1 Mar 00:54:52.963: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUT: R2 >
* 00:54:52.963 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): IN: R2 > activate
* 1 Mar 00:54:52.979: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUTSIDE:
* 1 Mar 00:54:52.979: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUT: R2 #.
* 00:54:52.979 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): IN: R2 #wr
* 1 Mar 00:54:53.895: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUTSIDE:
* 00:54:53.899 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUT: building configuration...
* 1 Mar 00:54:53.899: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUT: [OK]
* 1 Mar 00:54:53.899: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): OUT: R2 #.
* 00:54:53.903 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): IN: R2 #reload in 10
* 00:54:54.015 Mar 1: % HA_EM-6-LOG: TEST: it worked!
R2 #.
* 00:54:54.015 Mar 1: % HA_EM-6-LOG: TEST: DEBUG (cli_lib): CTL: called cli_close.Your second approach is good, but you aren't answer the prompt. Add:
Action 1.8 cli command 'y '.
-
Hi, today we had a strange problem with one of our 5550. I worked through ASDM on it and all of a sudden I couldn't connect via asdm on the interface of management or inside interface. Nothing helps.
When I connected with a vpn, then use asdm, it works. My ip on the network when it did not work was 1xx.xxx.81.235. When I use the vpn is a 1xx.xxx.55.1 from a different ip address. I can build a connection on the inside interface with asdm (with vpn).
I tried closed and without stop the interface of man, that does not.
It may be that the things asa, I am an intruder and dynamically blocks my netwerk range? If yes where can I find this info.
Other users of our team had the same problem.
I also checked the syslog nothing.
THX,
Marc
Although I've ever experienced this myself, but if the running-config has not changed and worked before its possible that the ASA
may have shunned your connection?
To the CLI:
# sh shun
look if your IP address is present, if any make:
# claire shun
http://www.Cisco.com/en/us/docs/security/ASA/asa80/configuration/guide/protect.html#wp1058270
More than likely it is do to a change to the running configuration, I would start by looking at a previously working with the gift of running-config running-config.
-
Problem with ping VPN cisco 877
Hi all!
I have a working VPN between a fortigate and a Cisco.
I have a problem with ping network behind the cisco of the network behind the forti.
When I ping to vlan2 cisco without problem (192.168.252.1) interface, but I can't ping a server in the vlan2 (192.168.252.2) behind the cisco.
However the Cisco I can ping the server. In the forti, I see that ping to the interface vlan2 and server in vlan2 take in the same way, and I can see package.
I post my config could see it it as blocking the ping from 10.41.2.36 to 192.168.252.2 while 192.168.252.1 ping is OK?
IPSEC #show run
Building configuration...Current configuration: 3302 bytes
!
! Last modification of the configuration at 14:42:17 CEDT Friday, June 25, 2010
! NVRAM config update at 14:42:23 CEDT Friday, June 25, 2010
!
version 12.4
no service button
horodateurs service debug datetime msec
Log service timestamps datetime localtime show-time zone
encryption password service
!
IPSEC host name
!
boot-start-marker
boot-end-marker
!
logging buffered 1000000
enable secret 5 abdellah
!
No aaa new-model
clock timezone GMT 1
clock to summer time CEDT recurring last Sun Mar 02:00 last Sun Oct 03:00
!
!
dot11 syslog
IP cef
No dhcp use connected vrf ip
DHCP excluded-address IP 192.168.254.0 192.168.254.99
DHCP excluded-address IP 192.168.254.128 192.168.254.255
!
IP dhcp DHCP pool
network 192.168.254.0 255.255.255.0
router by default - 192.168.254.254
Server DNS A.A.A.A B.B.B.B
!
!
no ip domain search
name of the IP-server A.A.A.A
name of the IP-server B.B.B.B
!
!
!
!
!
crypto ISAKMP policy 1
BA aes 256
preshared authentication
Group 5
ISAKMP crypto key ciscokey address IP_forti
!
!
Crypto ipsec transform-set esp - aes 256 esp-sha-hmac vpntest
!
myvpn 10 ipsec-isakmp crypto map
defined by peer IP_forti
Set transform-set vpntest
match address 101
!
Archives
The config log
hidekeys
!
!
!
!
!
interface Tunnel0
IP 2.2.2.1 255.255.255.252
source of Dialer0 tunnel
destination of IP_forti tunnel
myvpn card crypto
!
ATM0 interface
bandwidth 320
no ip address
load-interval 30
No atm ilmi-keepalive
DSL-automatic operation mode
!
point-to-point interface ATM0.1
MTU 1492
bandwidth 160
PVC 8/35
VBR - nrt 160 160
PPPoE-client dial-pool-number 1
!
!
interface FastEthernet0
switchport access vlan 2
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
switchport access vlan 2
!
interface Vlan1
IP 192.168.20.253 255.255.255.0
IP nat inside
no ip virtual-reassembly
!
interface Vlan2
IP 192.168.252.1 255.255.255.0
IP nat inside
IP virtual-reassembly
!
interface Dialer0
bandwidth 128
the negotiated IP address
NAT outside IP
no ip virtual-reassembly
encapsulation ppp
load-interval 30
Dialer pool 1
Dialer-Group 1
KeepAlive 1 2
Authentication callin PPP chap Protocol
PPP chap hostname [email protected] / * /
PPP chap password 7 abdelkrim
myvpn card crypto
!
IP forward-Protocol ND
IP route 0.0.0.0 0.0.0.0 Dialer0
IP route 10.41.2.32 Tunnel0 255.255.255.240
!
no ip address of the http server
no ip http secure server
The dns server IP
translation of nat IP tcp-timeout 5400
no ip nat service sip 5060 udp port
overload of IP nat inside source list NAT interface Dialer0
!
IP access-list standard BROADCAST
permit of 0.0.0.0
deny all
!
NAT extended IP access list
IP enable any host IP_cisco
deny ip 192.168.252.0 0.0.0.255 10.41.2.32 0.0.0.31
!
access-list 101 permit ip 192.168.252.0 0.0.0.255 10.41.2.32 0.0.0.31
public RO SNMP-server community
3 RW 99 SNMP-server community
SNMP-server community a RO
SNMP-Server RO community oneCommunityRead
not run cdp
!
!
!
control plan
!
!
Line con 0
password 7 abdelkrim
opening of session
no activation of the modem
line to 0
line vty 0 4
password 7 aaaaa
opening of session
escape character 5
!
max-task-time 5000 Planner
NTP-period clock 17175037
Server NTP B.B.B.B
Server NTP A.A.A.Aend
Alex,
It's your GRE tunnel:
interface Tunnel0
IP 2.2.2.1 255.255.255.252
source of Dialer0 tunnel
destination of IP_forti tunnel
myvpn card cryptoYou also have routing set by it.
You don't need a GRE tunnel, nor do you need the road to tunnel if you want just IPsec tunnel.
-
Problem with the installation of the Plugin to check the VSANS health
Hello!
After running - /usr/lib/vmware-vpx/vsan-health/health-rpm-post-install.sh
I get this result:
/usr/lib/VMware-VPX/VSAN-health/health-RPM-post-install.sh--force
/ usr/lib/VMware-vpx/Workflow/bin
2015 05-15 T 21: 32:05.625Z development for install parameter: workflow.int.ser vice port
2015 05-15 T 21: 32:05.633Z development for install parameter: workflow.int.jmx - port
2015 05-15 T 21: 32:05.643Z development for install parameter: vpxd.int.sdk - por t
2015 05-15 T 21: 32:05.650Z development for install parameter: vpxd.int.sdk tun nel-port
2015 05-15 T 21: 32:05.658Z development for install parameter: rhttpproxy.ext.p ort1
2015 05-15 T 21: 32:05.665Z development for install parameter: rhttpproxy.ext.p ort2
{'vpxd_sdk_tunnel_port': ' 8089', 'rhttpproxy_https_port': '443', 'rhttpproxy_htt p_port': ' 80', 'workflow_service_port': ' 8088', 'vpxd_sdk_port': '8085', 'PASSWO RD': ", 'workflow_jmx_port': '19999'}
2015 05-15 T 21: 32:05.673Z development for install parameter: syslog.ext.port
2015 05-15 T 21: 32:05.682Z development for install parameter: vc.home.path
2015 05-15 T 21: 32:05.690Z development for install parameter: vc.conf.path
2015 05-15 T 21: 32:05.691Z health service firstboot VSAN has started
2015 05-15 T 21: 32:05.702Z user %s already exists, creation to jump.
2015 05-15 T 21: 32:05.710Z development for install parameter: rhttpproxy.cert
2015 05-15 T 21: 32:05.710Z WARNING rhttpproxy.cert install parameters optimization I empty s
Traceback (most recent call changed):
File "/ usr/lib/vmware-vpx/firstboot/vsanhealth_firstboot.py", line 292, may n
RES = vsanhealth_fb.get_rp_cert_info)
File "/ usr/lib/vmware/site-packages/cis/firstboot.py", line 185, in get_rp_cer t_info
digital footprint, ssl_trust, TCR = get_certinfo (rp_cert_file)
File "/ usr/lib/vmware/site-packages/cis/tools.py", line 184, in get_certinfo
f.readFile (cert_file)
File "/ usr/lib/vmware/site-packages/cis/utils.py", line 1028 to readFile
loErrMsg = localizedString (errMsg, file_name, e)
TypeError: localizedString() takes at most 2 arguments (3 given)
2015 05-15 T 21: 32:05.712Z health firstboot VSAN has failed
Traceback (most recent call changed):
File "/ usr/lib/vmware-vpx/firstboot/vsanhealth_firstboot.py", line 343, < mo dule >
Main()
File "/ usr/lib/vmware-vpx/firstboot/vsanhealth_firstboot.py", line 333, in may n
If eInfo and eInfo.detail:
UnboundLocalError: variable local "eInfo" referenced before assignment
VMware-vpxd: your visit vpxd request administrative. process ID was 9301
success
VMware-vpxd: Certificate SSL VC does not exist, it will be generated by vpxd
Pending database shipped to startup: success
Running scripts before starting...
VMware-vpxd: from vpxd of administrative request.
success
VMware-vpxd: waiting for vpxd to start listening to the requests on 8089
Wait vpxd initialize: .the
VMware-vpxd: vpxd has been initialized.
Last login: Friday, May 15, 21:18:53 UTC 2015 on console
Stopping VMware vSphere Web Client...
Order of VMware vSphere Web Client.
Last login: Friday, May 15, 21:32:20 UTC 2015 on pts/1
From VMware vSphere Web Client...
Waiting for VMware vSphere Web Client...
running: PID:30348
The suite - no buttons.
As far as I understand it - there are a few problems with certificate.
So, help me with troubleshooting, please.
Thank you.
Glad it worked! I managed to solve the rest of my problem get the plugin loaded as well. Layout rhttpproxy.cert solved the problem with health-tr/min-post-install completed successfully. But after you start the vmware-vsan-health service, health in the web client page loaded yet never buttons such as 'enable '.
I checked /var/log/vmware/vsan-health/vmware-vsan-health-service.log and noticed it was spamming 'Could not open a session in VC, retry in 10 seconds' over and over again. So I went digging in the python source in /usr/lib/vmware-vpx/vsan-health. I managed to understand that when you start the web service that hosts the plugin, it tries to connect to vCenter using own vCenter SSL certificate and the private key (rui.crt and rui.key) in/etc/vmware-vpx/ssl. On my VCSA, the permissions of that file looked like this:
myvcsa: / etc/vmware-vpx/ssl # ls - la
Total 28
drwxr-x - 2 root cis 4096 Jul 20 05:00.
drwxr-xr-x 14 root root 4096 21 Jul 04:05...
-rw - 1 root root 3416 Apr 30 05:36 rui.crt
-rw - 1 root root 1704 Apr 30 05:36 rui.key
-rw - 1 root root 65 30 Apr 05:19 symkey.dat
-rw - 1 root root 3343 Apr 30 05:36 vcsoluser.crt
-rw - 1 root root 1704 Apr 30 05:36 vcsoluser.key
Now, I knew that the health service was run as a local user called vsan-health. It so there's no way that he would be able to read these files. Fortunately, I had a mostly vanilla VCSA I could compare with. Here's what looked like the VCSA vanilla folder:
myvcsa: / etc/vmware-vpx/ssl # ls - la
Total 28
drwxr-x - 2 root cis 4096 Jul 20 05:00.
drwxr-xr-x 14 root root 4096 Jul 21 04:24...
-rw - r - 1 root cis 3416 Apr 30 05:36 rui.crt
-rw - r - 1 root cis 1704 Apr 30 05:36 rui.key
-rw - 1 root root 65 30 Apr 05:19 symkey.dat
-rw - r - 1 root cis 3343 Apr 30 05:36 vcsoluser.crt
-rw - r - 1 root cis 1704 Apr 30 05:36 vcsoluser.key
Notice the difference of the Group property on the associated files cert and change of 600 to 640 permissions. When I saw that, I have also remembered seeing in the vsan firstboot script that the vsan-health user was added to the cis group. As soon as I did my broken VCSA permissions corresponds to vanilla, the service has started and all this work began. I guess the reason that my permissions were leech is a bug with the replacement of SSL scripts. One of the first things I do on my vCenter is updating the SSL certificates with those customized PKI infrastructure. I guess that process currently does not work quite right and live the permissions on files that is not replaced.
-
Problem with PowerCLI5.8 / PS4
Hello
I wrote a script to run a bunch of tests on our various sites of vCloud Director. It works very well on the box I was developing it on (running Powershell 3 / PowerCLI 5.1 R1). When I moved it to another machine (running Powershell 4 / PowerCLI 5.8) he begins to act a bit strange.
For example, I took to bypass my commands like this:
$Orgvdc = get-OrgVDC 'My first Org VDC'
It works very well on the area running Powershell3/PowerCLI5.1 box, but if I run the same on my box Powershell4/PowerCLI5.8 I get the following error:
Get-OrgVdc OrgVdc with the name "My First Org VDC" was not using the specified filters.
Only, it seems to work on PS4/PCLI5.8 if I do it this way:
$Orgvdc = get-OrgVDC | where {$_.name - eq "My first Org VDC"}
Anyone know if something has changed in Powershell 4 or PowerCLI 5.8 that has stopped us being lazy and make the short method?
EDIT: Just realized that it seems to work if I don't have any spaces in the name. If Get-OrgVDC 'MyOrgVDC' works (when it exists with this name), but the Get-OrgVDC "My Org VDC" seems not to work - return an error "'My Org VDC' was not found using the specified filters". If a problem with spaces then?
Dave
For the record, PowerCLI 6.0 with Powershell 4.0 solved my issue work and filters correctly on vCloud Director cmdlets in PowerShell ISE which is nice
Dave
-
Cannot change NetworkName (problem with the syntax?)
First of all, I don't know anything about Powershell, so it is probably a n00b mistake.
I'm changing the portgroup to a specific NIC of the virtual machine, but it fails, and looks like there is a problem with my syntax and more precisely my definition of the network card.
Please enlighten me on what I am doing wrong, have tried several different syntaxes now without a bit of luck.
[vSphere PowerCLI] C:\Program Files (x 86) \VMware\Infrastructure\vSphere PowerCLI > Set-NIC - NIC "Network adapter 2" - don't
tworkName "NAT" - vm win7-01
Together-NetworkAdapter: cannot bind parameter "NetworkAdapter". "Could not convert the value of 'Network adapter 2' of type 'System.String' to type '.
VMware.VimAutomation.ViCore.Types.V1.VirtualDevice.NetworkAdapter ".
On line: 1 char: 35
+ Set-network adapter - card network < < < < 'Network adapter 2' - NetworkName "NAT" - vm win7-01
+ CategoryInfo: InvalidArgument: (:)) [game-NetworkAdapter], ParameterBindingException)
+ FullyQualifiedErrorId: CannotConvertArgumentNoMessage, VMware.VimAutomation.ViCore.Cmdlets.Commands.VirtualDevice.SetNetworkAdapterI think you should do the following
Get-NetworkAdapter - VM win7-01 | where {$_.} Name - eq 'Network adapter 2'} | Together-NetworkAdapter - NetworkName "NAT" - confirm: $false
First you "get" the NICs for the virtual machine, and then you filter one you want with the Where-Object cmdlet and finally you set the adapter to the portgroup.
-Confirm the parameter avoids that you must meet to confirm the change.
-
After the update to ios 10.0.2 - trying to use bluetooth to call my vehicle, it says: "this article is not in your phone book." How can I solve this problem?
Greetings, joybelino1!
Thank you for joining the communities Support from Apple! I can't wait to see that you are having problems with your Bluetooth in your car! The good news is that Apple has a great article that will help you with measures to try to resolve the problem. Read this article to gethelp to connect your iPhone, iPad, or iPod touch with your car radio. Even though he talks about problems with the connection, it also has the steps for other questions you may have once connected.
If you use Bluetooth
- Consult the user manual of your car stereo to get the procedure to a Bluetooth device.
- On your iOS device, drag up to open Control Center, then press ontwice to turn on Bluetooth and turn it back on.
- Restart your iOS device.
- On your iOS device, Cancel the twinning of your car radio. On the screen of your car désapparier your iOS device and any other device. Restart your car and your iOS device, then pair and connect again.
- Update your iOS device.
- Install the updates to the firmware of your car radio.
- If you still not connect, contact Apple technical support.
Have a great day!
-
Anyone having problems with WiFi connectivity after upgrade to Sierra?
I was wondering if anyone else knows issues with WiFi connectivity since the upgrade to Sierra 10.12? I have not had any problems with connectivity WiFi previously on El Capitan. Now I have regular randomly loose connectivity. My internet is cable and when it is connected I have a 100% connection. My details of iMac and I have used only 10% of my storage.
No problem with my iphone 6.
Hello AspDesigns,
I understand that, since the upgrade to Mac OS Sierra, your Mac seems to have trouble staying connected to Wi - Fi. Fortunately the diagnosis built-in wireless can help identify the source of so much trouble.
Search for Wi - Fi using your Mac problems
See you soon!
-
Problems with mail after switching to macOS Sierra
Hey all
After having recently upgraded to macOS Sierra, I am unable to read my mail.
I get the following error every time I check on "Get Mail".
There may be a problem with the mail server or the network. Check the account settings "*" or try again.
The server returned the error: Mail could not connect to the server 'pop1.tribcsp.com' using SSL on the default ports. Verify that this server supports SSL and that your account settings are correct.
What does this error message mean and how can I solve this problem.
Thank you
Hi Michael,
I see your message that you get an error in the mail indicating that there is a problem with the mail server or the network. To help get this problem resolved, I suggest that you follow the steps below:
If mail refers to a problem with the mail server, or the network
Mail will say that it is impossible to connect due to a problem with the mail server or the network. For example, the message may refer to a connection that has expired, or too many simultaneous connections:
If you are connected to the Internet, but the connection has expired, your email provider might be affected by a discontinuance of service. Contact them or see their status Web page to ensure that their e-mail service is online. Examples of status pages:
- iCloud mail status
- Gmail status
- Status of Yahoo mail
- Status of the AOL mail
- Status of Outlook e-mail
If the message indicates the number of simultaneous connections, too many of your devices is check your e-mail account at the same time. Quit Mail on one or more of your other devices.
If you are still unable to send or receive e-mails
- Make sure that you have installed latest version of the Mac software updates, especially if the problem occurred immediately after the installation of a previous update.
- In OS X El Capitan or later version, you can see a status icon and the short error message in the upper right of the Mail window, under the search box. The message may indicate 'Network offline' or 'Connection failed', for example. Click the message to see more details on the issue.
- Check your connection to the Mail connection doctor. It might be able to say more on the issue.
If you cannot send or receive e-mail on your Mac.
Take care.
-
iMac 27 "mid-2011 - Intermittent problem with CPU fan running at full speed and sleep mode.
Hello!
My iMac 27 "has an intermittent problem with the CPU fan runs at full speed. Sometimes it happens at the time when I start it, sometimes only in my session, and sometimes only after a certain time. So does seem to be a problem of "heating".
Second issue is with the mode 'sleep'. It may occur also at any time, at the start of the iMac, session, or after a certain time. But once he starts to go in mode 'sleep', when I wake up, it goes right back in mode after a few seconds and that it will continue indefinitely until I restart the computer.
What could be?
Please help me!
4ntoine
Here is my model of iMac:
iMac 27 "mid-2011 model 12.2
Intel Core i7 3.4 GHz
AMD Radeon HD 6970M 1024 MB
OS X El Capitan 10.11.6
SMC 1.72f2Boot ROM IM121.0047.B23
reset the SMC
Reset the management system (SCM) controller on your Mac - Apple Support
Maybe you are looking for
-
the app is only available in the app store from another country?
Hello I am a Belgian citizen working and living in London (UK) and I used to make photos with a Belgian/Dutch company (HEMA) albums, they have now totally new software that must be downloaded through the app store, but it is not available in the app
-
Fixed it myself. Thank you
-
Using Windows XP and OE6. I want to open the folder to archive and get the messages back to my Inbox.
-
* Original title: attachments Help, please. I did something wrong (AGAIN!) I had no problem with access to attachments to my e-mails, but a problem occurred just. I can longer open attached pdf files. I am able to preview the files, but they are too
-
How long should we keep logs archived in the comic book?
11.2.0.4 DB Oracle Linux 6.5We have a database whose archive generation is as follows.Average of generation of archive log: 400 GB/dayMax log generation: 900 GB/dayArchive log diskgroup size: 4 TBBackup strategy: we take full backups on Monday and We