vCO - adding vCenter
When you add a 5.5 Server vCenter Orchestrator 5.5u1 I get the error:
InternalError: java.security.cert.CertificateException: certificate is not consistent with the constraints of the algorithm (Workflow: import a certificate from URL / validate (item1) #6)
The vCenter server has been upgraded to 5.5 of many previous versions of vCenter.
Any suggestions on how I can add this server?
The machine Google references SSL, MD5 compatibility issues.
Thoughts?
~ Alex
Maybe some of the certificates has key too short, or uses an algorithm that is no longer supported. You try to ease some of the restrictions.
Look for a file named java.security (vCO device, it is /usr/java/jre-vmware/lib/security/java.security. Open it with a text editor and look for the jdk.certpath.disabledAlgorithmsproperty. Its default value is something like
jdk.certpath.disabledAlgorithms = MD2, RSA key size<>
which disables the short keys)< 1024="" bits).="" check="" if="" your="" certificates="" violates="" some="" of="" the="" restrictions="" defined="" by="" this="" property,="" and="" if="" yes,="" remove="" the="" restriction="" from="" the="" property="" value.="" save="" the="" file="" and="" restart="" the="" vco="" appliance="" for="" change="" to="" take="">
I have not actually tried these steps, but in theory, they should work.
Tags: VMware
Similar Questions
-
Cannot save the vCO with vCenter WebClient
Hi all
I have a strange situation that I hope you can help me with.
Basically, I am fighting to save the vCO with vCenter WebClient device, when I try to add in the web interface of vCenter, the test connection fails.
The vCO device has been configured to use AD authentication and the vCenter plugin seems to be set up correctly. In fact, I can run all workflows from it interact successfully with the vCenter.
I followed the troubleshooting steps in similar positions, but none of them have worked:
I can see the extension of vCO through the https://vcenter1.xxxxx.com/mob . I have also not saved and put it back with the same result.
I also tried with different versions of the device to vCO (5.0, 5.5.1 5.5.2...) but no joy with any of them.
I want to emphasize that I used a device registered with vCenter, vCO which has been deleted. After checking the mob site, I discovered that the extension pointing to this previous vCO was still in place, so I recorded. But the issue has not been resolved.
vCenter 5.5.0 build 1750785
vCO 5.5.2 build 1951762
Any other ideas?
Any help would be appreciated.
In order to use the vCO within customer web vSphere vCO must use SSO authentication and SSO used must match the one used by web vSphere client.
What happens is this user log in vSphere client and web based on as user token credentials is generated.
This token is presented to the vCO and vCO is not able to check (because in LDAP mode or using different SSO server or...) vCO rejects the request.
-
Hello!
are there problems to wait when connecting vCO to a vCenter which is in bound mode?
Thank you!
see you soon,
Joerg
Hello
with the exception of the limitations known to vCenter Server and vCenter Orchestrator, I think that there are no problems with this solution. You will need a vCO by vCenter Server instance in enterprise environments. In smaller environments, you can connect several Server vCenter vCenter Orchestrator.
Best regards
Christian
-
constant vCO - specifically vCenter
Hello
I would like to know which constants are available in vCO, including how the vcenter which currently serves back...
MfG,
Dave
I think that the id property returns a url with the domain name or ip address of the machine of vcenter. Which of the two will be returned depends on what you entered in the configuration of the plug-in when vCenter added. Do you need another 'name' of the vCenter?
-
Error in the plug-in when just browsing added vcenter
Hello
I just added a new vcenter to manage with orchestrator. I add the certificate and connection that seem good. Everything is green in the configuration of the web page! Please see printscreen!
When I opened the orchestrator client, I can see my first VCenter and browse the object. I can see my second VCenter but when I try to go there is just a message: "error in the plugin.
Thank you very much for your help!
Nicolas
Hello
This error occurs when the vCO Server uses LDAP credentials to connect to vCenter plugin. When you configure the server vCenter Server in the configuration of vCO, it uses the vCenter credentials to authenticate. Now, when you connect to vCO with vCO Client, it uses the same credentials to authenticate the plugin vCenter in the client. Therefore, the best way to solve this error is to create the same user (with the same credentials) that connects to the server vCenter Server, the LDAP protocol you are using, with administrative rights. Therefore, the same user a/c will be used to connect to vCenter and also of course the vCO client.
Hope this is useful and you are able to resolve this error.
-
What can you do with vCO in vCenter Foundation and Essentials?
Hello!
When you have a Standard license for vCenter, you have a complete Orchestrator platform, you can develop your own workflow...
In vCenter Foundation, you have an orchestrator of 'read only', so you can only run existing workflows, but you cannot create your own little ones.
Is it possible to import (3 suppliers of party for example) packages and run the workflow in these packages?
What vcenter Essentials, what's possible here?
Thank you!
See you soon,.
Joerg
Hi Joerg,
Installation and Config Guide, p59 (http://www.vmware.com/pdf/vco_410_install_config_guide.pdf):
Essentials: "you're reading privileges on all the Orchestrator. You can run the workflow, but you cannot modify them. »
Normally, with the Foundation, you should be able to import, execute and modify workflows of 3 packs of part.
Kind regards
Stuart (vCO docs)
-
Error adding Vcenter server to view administrator
I'm making a Point of Concept with Horizon see 5.5.
I can not add a server vcenter for the Manger of the view. I get an "error record vCenter entered.
If I look in the log file I have this
2013-10 - 15 T 05: 42:55.736 - 07:00 ERROR (0814-0 D 38) < TP-Processor2 > [Connection4] connection to the server vCenter Server https://SRV-vCenter.clasd.net:443 / sdk failed.
I'm completely lost on what to do.
I have solved my problem. I put the username as domain\username. Once I put it as username@domain everything worked.
-
5.5 should I use the device or vCenter vCO?
I tried to install 5.5 twice and everything seems to work, all green lights everywhere and I am able to go on the side of vCO, adding my vCenter. However, on the side of vCenter, the vCO server never appears and if I go to administration > Orchestrator and change the settings there and try to test my connection, it still fails.
And then so far every time I restarted the service of vCO, the front-end web main vCO appears as an error 500. Components operate, I can access the configuration, launch the client, etc., but the home page has the server error.
For the 500 error, confirm that your vCO Server is configured to listen on 0.0.0.0... This page should show even when you say vCO listening on a configured IP address, rather than the value default 0.0.0.0, but this seems to break this landing page. I reported this bug when I first came across it.
-
Hello world
I have a few questions on the compatibility between vRO 6.0.3 and vCenter vCloud Director 5.6 and 5.5:
In vCenter Orchestrator 5.5.2 I plugin to connect the vCO to vCenter (version
2. a supplementary door on vSphere Web Client integration with vRO. To do this properly first of all I must use SSO authentication mode? It won't work with LDAP authentication?
3. anyone know if vRO works closely with vCloud Director 5.6? I found 5.5.1.2 plugin, but using this plugin, I can not connect to vCD (in vCO 5.5.2 I have no problem).
Hello
(1) Yes, plugin configuration is workflow (this is the approach recommended new plug-ins; the old configuration of Web UI is deprecated and will be removed at some point).
(2) only the SSO mode is supported; LDAP won't work. Note that the UNIQUE authentication token is acquired in the name of the user logged in vSphere client to Web, so you must make sure that this user has enough permissions to connect to vRO.
(3) it should be newer versions of this plugin, and compatibility matrix showing which plugin version is compatible with given the vCD. Don't know where it is, however.
-
Copy comments to vCO Workflow question
I'm having some trouble with the copy of the client to a workflow of vCO (library > vCenter > operations > files > copy of comments to vCO). I followed all the instructions on how to configure a local access on the file system of vCO, but I can't make it work for write access (note: read is very good I can make a copy OF vCO to guest with success). In addition, I can get this working with native directories listed in the file js - io - rights.conf (meaning, all except the two new entries at the bottom of the file js - io - rights.conf below).
# cat /etc/vco/app-server/js-io-rights.conf
-rwx /.
+ rwx/var/run/vco /.
-rwx/etc/vco/app-server/security /.
+ rx/etc/vco /.
+ rx/var/log/vco /.
+ rwx/nfs/repo /.
+ rwx/repo/nfs/exports.
The permissions are set exactly the same, for example, like/var/run/vco:
drwx - 2 vco vco 4096 Oct 5 14:55 / var/run/vco
drwx - 2 vco vco 4096 Sep 29 14:22 / nfs/repo
The error I get when running workflow is "permission is denied" see below the exact error:
/ nfs/repo (Permission denied) (workflow: copy of the file of comments to the vCO / Scriptable task (item1) #10)
Finally, I have restarted the services vRO/vCO, and in desperation, restarted the unit several times but still no go.
Any help is appreciated!
I checked it on the device with the same version and had no problems. You can check that the "vco" user have permissions on the folder /nfs off/nfs/repo
-
If I have problems when you request a catalog from a VCO workflow built-in VCAC article. I use the workflow VCO "Linked Clone, with a single NETWORK card and Windows credentials" located in VCO under vCenter > > Clone > > Clone bound > > customization of Windows. I can go through the workflow very well in VCO, but I want to make it available via vCAC. When I try to download a virtual machine using workflow, the application process fails using the form in the time zone of the form section. There seems to be a problem with vCAC questioning vCO for doing the research for the appropriate time zone setting. The application works very well since within vCO, but not inside vCAC. Thoughts?
Jeremy
I ended up using a vCenter customization specification to achieve this. It turns out that the specification is as a safety net that will configure everything that is defined in the specification, unless there is a custom property configured on the action plan for this setting. If this is the case, the custom property takes precedence.
Jeremy
-
I just managed (I think) added Vcenter to VCAC end point, but I see a few resources
I used [email protected] to add the endpoint and it seems to use the [email protected] to authenticate,
should I just wait? restrart or something?
Thank you!
When you installed the Agent of vSphere, asked the name of endpoint - make sure that the name you entered exactly matches the name of the endpoint. Then look in the agent log to ensure that the endpoint and the credentials are valid (no error). If you use SSL Certs and the vSphere agent has been installed on another server, make sure that the cert is that machines of trusted root.
You will also get a good idea what the root cause is from the log Agent C:\Program Files (x 86) file name \VMware\VCAC\Agents\(agent) \logs\vSphereAgent. If its not correct, you will get a not found or access denied error
Once you confirm the Endpoint\Credential, the SSL certificate (if any) are defined - as the previous comment, it is stated, then create a group of fabric and you should be able to check an area associated with the discovered clusters.
-
Associate a custom workflows of vCO object
Hi all
I have a web client plugin, where I create a few custom objects to vsphere. I wanted to know I can associate these custom personalized for my workflow objects. I have enclosed a snapshot of the Oct > manage page, which shows all the vsphere object as objects that are available for associating with the workflow, can the items my custom show up there?
Kind regards
Vaibhav
This is a question for the forum VCO, see vCenter Orchestrator plug-ins SDK
Thank you
-
I use vCenter 5.1 and we'll be adding 5.1 vSphere hosts in a farm in the data center. When 5.1 ESXi hosts are added vCenter server installs an agent on ESXi hosts? My understanding is the hosts have no console for agents, but I would like to understand the interaction between ESXi and vCenter and determine if an agent installation takes place - thank you
In ESXi 5.1, vpxa is by default installed module in ESXi. Once the vCenter added, he starts talking to vpxd
-
restarting the service disabled vCO attributes
Hello
My environment;
ESX 623373 5.0.0
vCO 4.2.1 build 555
vCenter Server Plugin 5.0.1
I have an annoying problem... whenever I restart the service vCO (VMware vCenter Orchestrator Server) some attributes - most of them related to vc - be unset.
Is it possible that I can keep these values?
Thank you
Tommaso
Hello
This is the answer a few posts below: http://communities.vmware.com/thread/401052?tstart=0
Basically it's a known issue with an update in June. If you need to get this update before, open a support request.
Christophe.
Maybe you are looking for
-
Disc cannot mount (Macbook Pro issues)
I have a Macbook Pro Late 2011. A few years ago I tried to download World of Warcraft (don't ask not why, I know now that it's a terrible idea, it was). And since then my mac runs terribly slow. It will start up and I can log on and even browse the w
-
My home page is completely screwed up and unusable
My homepage is att.my.yahoo.com. Yesterday, the home page has become all a big mish mash of various links, but not something usable. I tried Safari and my homepage is correct.
-
In the last few days I've been doing the following popup when I use firefox as my browser: Exc in ev handl: error: Bad NPObject as private data! I guess it comes from your last update. I have windows vista with a 64-bit processor, and I use the lates
-
Stuck on the keys saying - hibernation.tapped blue screen power on and power off
Came home from work, powered to the top of my machine, there is a blue screen saying - put into hibernation. I filmed all the keys, use the power button to turn on/off. Help! PLEASE, I BEG YOU!
-
ENVY 15-AH151sa laptop: Guard for lack of HP Scan of my PC (to check the drivers)
I had to download a driver this morning. I was able to pick the one I wanted and it worked. As I was on the help screen, I thought I would check if any other drivers needed to be updated. I get this: Is there a problem with this process? Should I ple