Piszki Lab | EN

My case study in the clouds…

vCenter 6.0 – ESX Agent Manager solution user fails to log in.

| 0 comments

In this time we test quite extensively the vSphere 6.0, including trying to work out the right approach to one of the news that is the VMCA. To date we have used successfully own local (Microsoft) CA. Getting through VMware the next, its own subordinate CA, a little complicated us to manage certificates (as you probably all). As the Certificate Manager is not very convenient to use when generating certificates for vm’s or services that I personally recommend my own CA script. Just initiate in this script a new intermediate CA and then copy the certificate and key (root_signing_cert) from VMCA to my CA. Speed ​​and ease of use are much better (especially when we need to generate and install certificates on the ESXi).

On this article, however, is another problem with which we met. It relates to vCSA and vCenter installed on Windows. After generating a new certificate for the vCenter signed by our CA (option 2 in Certificate Manager – Custom Signing Certificate) and restart the service, it turned out that there are big problems with ESX Agent Manager (EAM). It was enough to enter in the vSphere Web Client to Administration -> vCenter Server Extension -> vSphere ESX Agent Manager -> Solution to see the message “HTTP Status 500 – NoVCenterConnection”:

eam0

In the EAM (/storage/log/vmware/eam/eam.log) log entries appear indicating that the EAM can not log in to the vCenter.

eam2

It turned out that this is due to improper certificate replacement in EAM during the restart vCenter services. Fortunately, there is a corresponding KB, the solution is simple, but requires an additional restart vCenter:

eam1

After reboot, everything returns to normal.

eam3

Rate this article:
[Total: 1    Average: 1/5]

Author: Piotr Pisz

Computer always, since I got a Commodore 64 at the end of primary school, through his beloved Amiga and Linux infinite number of consoles, until today, fully virtual day. Since 2001, Unix/Linux Systems Administrator, for seven years a faithful companion and protector of Solaris system, until his sad end. In the year 2011 came in the depths of virtualization, then smoothly ascended into the clouds and continues there today. Professionally working as Systems Architect in the Polish Security Printing Works.

Leave a Reply

Required fields are marked *.


.

Enjoyed the post? Support Piszki Lab | EN, click on the AD! :-)

.