Tag Archives: Virtualization

Connect-VIServer Error: Invalid server certificate. Use Set-PowerCLIConfiguration

This post was originally published on this site

After installation of new version of VMware PowerCli module on one of my deployment at client infrastructure. I tried testing it by using cmdlet connect-viserver to vcenter, which was failing with below error. Reading error carefully on the screen, which was telling me, my vcenter’s SSL certificate is not trusted or self-signed, also The error gives resolution it self what needs to be done next.

connect-viserver : 8/9/2019 10:02:27 AM Connect-VIServer Error: Invalid server certificate. Use Set-PowerCLIConfiguration to set the value for the InvalidCertificateAction option to Prompt if you’d like to connect once or to add a permanent exception for this server.
Once or to add a permanent exception for this server. Additional Information: Could not establish trust relationship for the SSL/TLS secure channle with authority ‘192.168.34.21’. At line:1 char:1
+ connect-viserver
+ ~~~~~~~~~~~~~~~~
+ CategoryInfo : SecurityError: (:) [Connect-VIServer], VISecurityNegotiationException
+ FullyQualifiedErrorId : Client20_ConnectivityServiceImpl_Reconnect_CertificateError,VMware.VimAutomation.VICore. # Cmdlets.Commands.ConnectVIServer

vmware-vsphere-powercli-automation-module-connect-viserver-Set-PowerCLIConfiguration-InvalidCertificateAction-trust-relationshif-for-ssl-tls-solved.png

The correct response to resolve this issue is by replacing vCenter certificate to trusted CA signed certificate or add root chain certificate. But in case replacing SSL certificate option is not available to you, this issue can be resolved using another option using cmdlet Get-PowerCLIConfigurationAfter running it, it shows the setting of how it will treat InvalidCertificateAction, default setting is Unset which means undefined.

Get-PowerCLIConfiguration-InvalidCertificateAction-vmware-vsphere-powercli-module-7-set-powercliconfiguration-proxypolicy-scope-allusers-proxypolicy.png

Using below cmdlet it allows to connect to vCenter with Invalid certificate (self-signed certificate or invalid cert) but shows with certificate warning.
Set-PowerCLIConfiguration -Scope User -InvalidCertificateAction warn

Set-PowerCLICOnfiguration-Scope-User-InvalidCertificateAction-Warn-vmware-powercli-automation-proxy-policy-defaultviserver.png

Once cmdlet Connect-VIServer with vCenter fqdn or IP is invoked, it shows the certificate contents and connection is successful with invalid certificate.

vmware-vsphere-powercli-connect-viserver-x509-module-root-certificate-self-signed-certificate-online-certificate-revocation-list-CRL.png

Useful Articles
Resolved: HP ILO this page cannot be displayed ERR_SSL_BAD_RECORD_MAC_ALERT
Reset/Restart HP ILO (Integrated Lights-outs) using putty
Reset HP ILO password from Esxi server
ESXi HP Blade start issue Enclosure power event detected, System Halted until power condition is corrected
Esxi update individual component firmware on HP hardware: disk degraded not authenticated

 

Connect-VIServer Error: Invalid server certificate. Use Set-PowerCLIConfiguration

This post was originally published on this site

After installation of new version of VMware PowerCli module on one of my deployment at client infrastructure. I tried testing it by using cmdlet connect-viserver to vcenter, which was failing with below error. Reading error carefully on the screen, which was telling me, my vcenter’s SSL certificate is not trusted or self-signed, also The error gives resolution it self what needs to be done next.

connect-viserver : 8/9/2019 10:02:27 AM Connect-VIServer Error: Invalid server certificate. Use Set-PowerCLIConfiguration to set the value for the InvalidCertificateAction option to Prompt if you’d like to connect once or to add a permanent exception for this server.
Once or to add a permanent exception for this server. Additional Information: Could not establish trust relationship for the SSL/TLS secure channle with authority ‘192.168.34.21’. At line:1 char:1
+ connect-viserver
+ ~~~~~~~~~~~~~~~~
+ CategoryInfo : SecurityError: (:) [Connect-VIServer], VISecurityNegotiationException
+ FullyQualifiedErrorId : Client20_ConnectivityServiceImpl_Reconnect_CertificateError,VMware.VimAutomation.VICore. # Cmdlets.Commands.ConnectVIServer

vmware-vsphere-powercli-automation-module-connect-viserver-Set-PowerCLIConfiguration-InvalidCertificateAction-trust-relationshif-for-ssl-tls-solved.png

The correct response to resolve this issue is by replacing vCenter certificate to trusted CA signed certificate or add root chain certificate. But in case replacing SSL certificate option is not available to you, this issue can be resolved using another option using cmdlet Get-PowerCLIConfigurationAfter running it, it shows the setting of how it will treat InvalidCertificateAction, default setting is Unset which means undefined.

Get-PowerCLIConfiguration-InvalidCertificateAction-vmware-vsphere-powercli-module-7-set-powercliconfiguration-proxypolicy-scope-allusers-proxypolicy.png

Using below cmdlet it allows to connect to vCenter with Invalid certificate (self-signed certificate or invalid cert) but shows with certificate warning.
Set-PowerCLIConfiguration -Scope User -InvalidCertificateAction warn

Set-PowerCLICOnfiguration-Scope-User-InvalidCertificateAction-Warn-vmware-powercli-automation-proxy-policy-defaultviserver.png

Once cmdlet Connect-VIServer with vCenter fqdn or IP is invoked, it shows the certificate contents and connection is successful with invalid certificate.

vmware-vsphere-powercli-connect-viserver-x509-module-root-certificate-self-signed-certificate-online-certificate-revocation-list-CRL.png

Useful Articles
Resolved: HP ILO this page cannot be displayed ERR_SSL_BAD_RECORD_MAC_ALERT
Reset/Restart HP ILO (Integrated Lights-outs) using putty
Reset HP ILO password from Esxi server
ESXi HP Blade start issue Enclosure power event detected, System Halted until power condition is corrected
Esxi update individual component firmware on HP hardware: disk degraded not authenticated

 

VMware Named on Forbes World’s Best Employers list for 2019

This post was originally published on this site

VMware placed #120 on Forbes World’s Best Employers list for 2019.  To create the ranking, Forbes partnered with Statista to cull their annual list of the world’s 2,000 largest public companies based on 1.4 million employment recommendations sourced from a global poll and regional surveys. Respondents around the world were asked to rate their own […]

The post VMware Named on Forbes World’s Best Employers list for 2019 appeared first on Partner News.

Upgrade VMware Horizon 7.8 to 7.10

This post was originally published on this site

As an upgrade to VMware has been released a few days ago, I thought it could be interesting to share with you my experience of upgrading to 7.10 As I have few experience with VMware Horizon as today and I made some research regarding the Upgrade path, based on what I have currently deployed, I […]

The post Upgrade VMware Horizon 7.8 to 7.10 appeared first on .

vRealize Suite 2019 Released

This post was originally published on this site

VMware has released vRealize Suite 2019, which is vRealize Automation 8.0 , Operations Manager 8.0, vRealize Log Insight 8.0, vRealize Orchestator 8.0 and vRealize Suite Lifecycle Manager 8.0 . vRealize Automation 8.0 Note that there are no upgrade from vRealize Automation 7.x, that will properly come with the next version. What’s new: Modern Platform using […]

How to reset iLO password from ESXi

This post was originally published on this site

Everyone’s been here before, you know the iLO password should be set to something, only to find out that on just this one server the password is different. There are several ways to reset the iLO password; you could reboot the server and reset it that way. But who likes planning downtime on a server […]

The post How to reset iLO password from ESXi appeared first on Brisk-IT.

Announcing General Availability of vRealize Suite 2019, vCloud Suite 2019, and vCloud Suite 2019 Platinum!

This post was originally published on this site

VMware vRealize Suite 2019, vCloud Suite 2019, and vCloud Suite 2019 Platinum, the industry leading cloud management platforms are now available for download.   Modern Hybrid Cloud Management Platform VMware vRealize Suite, vCloud Suite, and vCloud Suite Platinum are part of VMware’s hybrid cloud management platform offerings. vRealize Suite is a hybrid cloud management platform

The post Announcing General Availability of vRealize Suite 2019, vCloud Suite 2019, and vCloud Suite 2019 Platinum! appeared first on VMware Cloud Management.

How to reset the NSX l2vpn edge standalone appliance password

This post was originally published on this site

ProblemI was working to an infrastructure deployed by someone else, and I needed to get into the “NSX l2vpn edge” standalone appliance to check some information without having to change the settings. As can be seen from the image below, the user appears to be also locked due to 9 failed logins attempts.

Let’s covering the process down here in detail, step by step, with screenshots. Disclaimer: Some of the procedures described below is not officially supported by VMware. Use it at your own risk.

SolutionThe fastest way I found to access the NSX l2vpn Edge Appliance and reset the password, is to start the VM from a CDROM with a Linux live CD. First of all, we turn off the VM and take a cold snapshot.

after that we connect to the appliance the Linux live CD (in my case I used lubuntu)

and we boot the appliance selecting the CD-ROM Drive options

Start linux in live mode (without installing anything), and once started open a Terminal and …. lubuntu@lubuntu:~$ sudo suroot@lubuntu:~# fdisk -l

as we can see from the below picture, we have disk /dev/sda with four partitions

The partition that interests us is the /dev/sda1 … root@lubuntu:~# mount /dev/sda1 /mnt/root@lubuntu:~# chroot /mnt/bash-4.3# passwd adminThen, need to provide a new password

If everything went fine, the message password update successfully should be appear. Repeat the same command to reset the password of the user “enable“, and if the password was successfully reset, reboot the NSX l2vpn edge appliance. When the appliance is up and running, try to get into providing the admin username and password ….

That’s it.