VCF on Dell VxRail: Replacing vRSLCM certificates failed
Summary: While deploying vRSLCM from SDDC Manager, it throws an error "Replacing vRSLCM certification failed".
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Symptoms
While deploying vRSLCM from SDDC Manager, it throws an error "Replacing vRSLCM certification failed".
/var/log/vmware/vcf/domainmanager/domainmanager.log:
/var/log/vmware/vcf/domainmanager/domainmanager.log:
Error while executing 'create csr config'
Cause
vRSLCM requires bi-directional communication between SDDC Manager and vRSLCM VMs on port 22 for SSH.
If there is only one-way traffic between these VMs, it fails to replace the certificates.
If there is only one-way traffic between these VMs, it fails to replace the certificates.
Resolution
To resolve this issue, verify the connectivity between VMs:
Using an SSH session, run this command from vRSLCM VM:
Using an SSH session, run this command from vRSLCM VM:
curl -v telnet://ssdc manager IP:22Using an SSH session, run this command from SDDC Manager VM:
curl -v telnet://vRSLCM IP:22Perform any updates to firewall rules as per the results obtained from the above commands.
Affected Products
VxRail E560 VCF, VxRail E560F VCF, VxRail E560N VCF, VxRail G560 VCF, VxRail G560F VCF, VxRail P570 VCF, VxRail P570F VCF, VxRail P580N VCF, VxRail S570 VCF, VxRail V570 VCFProducts
VxRail V570F VCFArticle Properties
Article Number: 000209988
Article Type: Solution
Last Modified: 07 Nov 2023
Version: 2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.