who is logged in to vcenter? how to find it in logs ? can you write where and what steps should I look
thanks
↧
vcenter login log
↧
VCSA 6.7U2 VAMI Update Fails With "Check the URL and try again"
My VCSA can't connect to the update source. Tailing /var/log/vmware/applmgmt/applmgmt.log reveals:
2019-04-18T19:10:49.671 [19010]ERROR:vmware.appliance.update.update_functions:Can't read JSON file /etc/applmgmt/appliance/software_update_state.conf [Errno 2] No such file or directory: '/etc/applmgmt/appliance/software_update_state.conf'
Not sure if that's related. Later I see:
2019-04-18T19:11:00.264 [19010]DEBUG:vmware.appliance.update.update_functions:runCommandAndCheckResult failed: LocalizableException({'id': 'com.vmware.appliance.update.download_failed', 'args': [], 'default_message': 'Download failed'}, '', '--2019-04-18 15:10:50-- https://vapp-updates.vmware.com/vai-catalog/valm/vmw/8d167796-34d5-4899-be0a-6daade4005a3/upgrade_info.xml\nResolving vapp-updates.vmware.com... 184.27.136.35, 2600:1402:f000:385::2ef, 2600:1402:f000:3a1::2ef\nConnecting to vapp-updates.vmware.com|184.27.136.35|:443... failed: Connection timed out.\nConnecting to vapp-updates.vmware.com|2600:1402:f000:385::2ef|:443... failed: Network is unreachable.\nConnecting to vapp-updates.vmware.com|2600:1402:f000:3a1::2ef|:443... failed: Network is unreachable.\n')
2019-04-18T19:11:00.264 [19010]DEBUG:vmware.appliance.update.update_b2b:Index file not present for the url https://vapp-updates.vmware.com/vai-catalog/valm/vmw/8d167796-34d5-4899-be0a-6daade4005a3/upgrade_info.xml
But when I curl to those URL's from the VAMI bash shell, I can retrieve them just fine. What gives? We do use a proxy server. When I refresh the VAMI update page to retry, netstat reveals:
| tcp | 0 | 1 contoso:47782 as-40816.engx.vmw:https | SYN_SENT |
| tcp | 0 | 1 contoso:46324 a104-74-67-235:www-http | SYN_SENT |
| tcp | 0 | 1 contoso:33058 a104-74-67-235.de:https | SYN_SENT |
Oopsie, it's not using our proxy. But curl is definitely using it. /etc/sysconfig/proxy is present and properly formatted per kb article -- both http and https are present. Wat do?
↧
↧
VCenter HOst Performance Graphs
Hi
In this view of performance, what does the 'Object' column refer to?
Cheers for any info
Phil
↧
vCenter 6.7U2 online update to 67U2a from VAMI fails in manifest verification.
Hi,
VAMI gives this user friendly error:
Error in method invocation ({'id': 'com.vmware.appliance.update.manifest_verification_failed', 'args': [], 'default_message': 'Manifest verification failed'}, 'Verification Failure\n', '')
And while searching through applmgmt logs from the shell, these following lines appear to be related to this error
019-05-17T12:13:54.960 [3641]DEBUG:vmware.appliance.update.update_functions:Running /usr/bin/wget --no-check-certificate --connect-timeout 10 -P /storage/core/software-update/tmp/lates
2019-05-17T12:13:55.70 [3641]DEBUG:vmware.appliance.update.update_functions:WGET: https://vapp-updates.vmware.com/vai-catalog/valm/vmw/8d167796-34d5-4899-be0a-6daade4005a3/6.7.0.30000.l
atest/manifest/manifest-latest.xml.sha256
2019-05-17T12:13:55.71 [3641]DEBUG:vmware.appliance.update.update_functions:Error reading fss override file [Errno 2] No such file or directory: '/etc/vmware/vsphereFeatures/b2b_fss_ove
rride.json'
2019-05-17T12:13:55.71 [3641]DEBUG:vmware.appliance.update.update_functions:Returning override switch updateAllowUnsecureUrl = None
2019-05-17T12:13:55.75 [3641]DEBUG:vmware.appliance.networking.proxy.proxy_impl:method=get, protocol=https
2019-05-17T12:13:55.76 [3641]DEBUG:vmware.appliance.update.update_functions:Policy not set.
2019-05-17T12:13:55.77 [3641]DEBUG:vmware.appliance.update.update_functions:Running /usr/bin/wget --no-check-certificate --connect-timeout 10 -P /storage/core/software-update/tmp/latest
2019-05-17T12:13:55.192 [3641]DEBUG:vmware.appliance.update.update_functions:Running /usr/lib/applmgmt/support/scripts/manifest-verification /storage/core/software-update/tmp/latest/man
ifest-latest.xml 256
2019-05-17T12:13:55.257 [3641]DEBUG:vmware.appliance.update.update_functions:runCommandAndCheckResult failed: LocalizableException({'id': 'com.vmware.appliance.update.manifest_verificat
ion_failed', 'args': [], 'default_message': 'Manifest verification failed'}, 'Verification Failure\n', '')
2019-05-17T12:13:55.258 [3641]ERROR:vmware.appliance.update.update_b2b:
Got exception while trying discover at URL https://vapp-updates.vmware.com/vai-catalog/valm/vmw/8d167796-34d5-4899-be0a-6daade4005a3/6.7.0.30000.latest: LocalizableException({'id': 'com
.vmware.appliance.update.manifest_verification_failed', 'args': [], 'default_message': 'Manifest verification failed'}, 'Verification Failure\n', '') 'Traceback (most recent call last):
\n File "/usr/lib/applmgmt/update/py/vmware/appliance/update/update_b2b.py", line 1207, in processURLUpdates\n header = _discoverUpdateAtUrl(url,\'latest\')\n File "/usr/lib/applmg
mt/update/py/vmware/appliance/update/update_b2b.py", line 1144, in _discoverUpdateAtUrl\n versionFolder)\n File "/usr/lib/applmgmt/update/py/vmware/appliance/update/update_b2b.py",
line 1001, in _discoverUpdateAt\n xmlManifest = verifyManifest(tempFolder)\n File "/usr/lib/applmgmt/update/py/vmware/appliance/update/update_b2b.py", line 163, in verifyManifest\n
"Manifest verification failed")))\n File "/usr/lib/applmgmt/update/py/vmware/appliance/update/update_functions.py", line 352, in runCommandAndCheckResult\n raise exception\nvmwar
e.appliance.update.update_functions.LocalizableException: ({\'id\': \'com.vmware.appliance.update.manifest_verification_failed\', \'args\': [], \'default_message\': \'Manifest verificat
ion failed\'}, \'Verification Failure\\n\', \'\')\n'
The manifest sha256 hash however seems to be in place
cat /storage/core/software-update/tmp/latest/manifest-latest.xml.sha256
SHA256(manifest-latest.xml)= 629a5f480..b18
-----BEGIN CERTIFICATE-----
MIIDyzCCArOgAwIBAgIJAIR/y018RgMXMA0GCSqGSIb3DQEBCwUAME0xCzAJBgNV
...
tAj6rdPq0c+/C+fct1cM
-----END CERTIFICATE-----
Is the hash a wrong one?
↧
VCSA 6.7 U2 - New Backup Over SMB
Cool backup vCenter to SMB share now in 6.7 U2!
I can't get it to work! Not sure what I am missing.
The helpful 'example' in the path shows:
protocol://server-address<:port-number>/folder/subfolder
Share I want to backup to is a Windows 2012 R2 share.
Port? I thought it would be 445.
My example:
SMB://10.1.1.1:445/hiddenshare$/subfolder
I enter my domain account that has full control on share and NTFS.
I get a "SMB location is invalid" error.
Where am I going wrong? VMware doc doesn't give examples.
Thanks!
↧
↧
Manually Applying Upgrade to eSXI - Dell
Hi All,
I inherited an eSXI host running a few servers. Sadly, someone thought removing the physical vCenter server was a good thing. So I currently need to upgrade, and patch my eSXI host. I am running 6.5 Update 1. I downloaded the .Zip (VMware-VMvisor-Installer-6.5.0.update02-13004031.x86_64-DellEMC_Customized-A11.zip) from Dell for my model sever and uploaded it to /Var/Tmp. And here I am stuck. The command I tried to run failed. What would be the command to install this upgrade? Also wondering is there is a CLI to pull down updates patches after that? Thanks for helping a novice.
↧
Upgrade VCSA 6.5U2e to 6.7U2 - VMware upgrade document
This upgrade seems to be possible according to the VMware Product Interoperability Matrices
Can someone please share the official upgrade documentation for 6.7U2 like there is for the 6.5U2 https://docs.vmware.com/en/VMware-vSphere/6.5/vsphere-esxi-vcenter-server-652-upgrade-guide.pdf
Thanks
↧
Upgrading Directly from 6.5 Update 1 to 6.7 Update 2
HI All,
Is there any issue going directly from 6.5 Update 1 to 6.7 Update 2? I am using a Dell custom image.
I appears to be a supported path according to the documentation, but wondering what the experience of others has been.
Thanks.
↧
Calculate required resources to down-grade a cluster
I have a cluster which has 14 hosts and averaging around 10% CPU usage and 80% memory usage. I want to reduce the number of hosts by say half so that I can better use the CPU resources of the remaining hosts, and upgrade the memory in them to take on the current memory requirements. Is there an online calculator/formula on how to calculate how many hosts I need minimum to accommodate the current workload? It should be able to tell me how much memory to add to each of the remaining hosts to keep the current workload afloat.
The hosts are UCS B200s which currently have 256GB RAM but can handle up to 1.5TB RAM.
↧
↧
Export VM List incomplete
Hi
When I try to export a list of all our vm's to excel - we only get the first hundred or so - in tests anywhere from 85 to 120 -- I would like to see all 800..... Is this a known issue? Or is it just me?
Any ideas gratefully recieved
TIA
↧
VCSA Auto Backup script
You can create Auto Backup of VCSA
#Create Text File
cd /usr/local/bin
vim vcsabackup.sh
#!/bin/bash
##### EDITABLE BY USER to specify vCenter Server instance and backup destination. #####
VC_ADDRESS=172.29.8.24
VC_USER=administrator@vsphere.local
VC_PASSWORD=Isf@h@nS!te123
FTP_ADDRESS=172.29.8.150
FTP_USER=test
FTP_PASSWORD=test
BACKUP_FOLDER=test
############################
# Authenticate with basic credentials.
curl -u "$VC_USER:$VC_PASSWORD" \
-X POST \
-k --cookie-jar cookies.txt \
"https://$VC_ADDRESS/rest/com/vmware/cis/session"
# Create a message body for the backup request.
TIME=$(date +%Y-%m-%d-%H-%M-%S)
cat << EOF >task.json
{ "piece":
{
"location_type":"FTP",
"comment":"Automatic backup",
"parts":["seat"],
"location":"ftp://$FTP_ADDRESS/$BACKUP_FOLDER/$TIME",
"location_user":"$FTP_USER",
"location_password":"$FTP_PASSWORD"
}
}
EOF
# Issue a request to start the backup operation.
echo Starting backup $TIME >>backup.log
curl -k --cookie cookies.txt \
-H 'Accept:application/json' \
-H 'Content-Type:application/json' \
-X POST \
--data @task.json 2>>backup.log >response.txt \
"https://$VC_ADDRESS/rest/appliance/recovery/backup/job"
cat response.txt >>backup.log
echo '' >>backup.log
# Parse the response to locate the unique identifier of the backup operation.
ID=$(awk '{if (match($0,/"id":"\w+-\w+-\w+"/)) \
print substr($0, RSTART+6, RLENGTH-7);}' \
response.txt)
echo 'Backup job id: '$ID
# Monitor progress of the operation until it is complete.
PROGRESS=INPROGRESS
until [ "$PROGRESS" != "INPROGRESS" ]
do
sleep 10s
curl -k --cookie cookies.txt \
-H 'Accept:application/json' \
--globoff \
"https://$VC_ADDRESS/rest/appliance/recovery/backup/job/$ID" \
>response.txt
cat response.txt >>backup.log
echo '' >>backup.log
PROGRESS=$(awk '{if (match($0,/"state":"\w+"/)) \
print substr($0, RSTART+9, RLENGTH-10);}' \
response.txt)
echo 'Backup job state: '$PROGRESS
done
# Report job completion and clean up temporary files.
echo ''
echo "Backup job completion status: $PROGRESS"
rm -f task.json
rm -f response.txt
rm -f cookies.txt
echo '' >>backup.log
#exit and save file with :wq
go to /etc/pam.d/password-auth and write these
# /etc/pam.d/password-auth
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth required pam_env.so
auth sufficient pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >= 500 quiet
auth required pam_deny.so
auth [default=die] pam_faillock.so authfail deny=3 unlock_time=604800 fail_interval=900
auth required pam_faillock.so authsucc deny=3 unlock_time=604800 fail_interval=900
account required pam_unix.so
account sufficient pam_localuser.so
account sufficient pam_succeed_if.so uid < 500 quiet
account required pam_permit.so
password requisite pam_cracklib.so try_first_pass retry=3 lcredit=-1 ucredit=-1 dcredit=-1 ocredit=-1 minlen=12
password sufficient pam_unix.so sha512 shadow nullok try_first_pass use_authtok
password required pam_deny.so
session optional pam_keyinit.so revoke
session required pam_limits.so
session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
session required pam_unix.so
if not exist file usr/lib/security/pam_faillock.so/ create it.
then create cron job for automatic backup
Crontab –u root –e
(Min) (Hour) * * * /usr/bin/sh /usr/local/bin/vcsabackup.sh
after that if use administrator@vsphere.local set permision
find / -name “authentication_sso.py
vim /usr/lib/applmgmt/lib/extensions/py/vmware/appliance/extensions/authentication/authentication_sso.py
fine this section
digest_value = str(self.xpath(
‘//ds:DigestValue’, reference, expect=1)[0].text).replace(
‘\r’, ”).replace(‘\n’, ”)
replace with
digest_value = self.xpath(
‘//ds:DigestValue’, reference, expect=1)[0].text
the end of
service-control --stop applmgmt
service-control --start applmgmt
↧
Customization specifications are not triggering after deploy/clone from template, and customization failing
I cannot get a customize specification to work properly and allow me to customize a newly created guest VM from a template!
This is all on vCenter 6.5 and vSphere 6.5.
I created an Ubuntu Linux (18.04) virtual machine, informed VMware that it is "Ubuntu Linux (64-bit)" and, after install, I used the "Clone" -> "Clone to Template in Library". I gave it a name, and it successfully cloned.
I then created, under "Polices and Profiles" -> "Customization Specifications", a specification for Linux as the Target VM OS. Under "Computer name" I set it to ask at time of deploy/clone with option "Enter a name in the Clone/Deploy wizard", set the local timezone, configured the networking for manual configuration by choosing "Prompt the user for an address when the specification is used". and provided DNS settings.
When I created a new VM from the content library and selected my newly created Ubuntu server, I chose "Customize the operating system" under "Customize VM Options". This adds a "Customize Guest OS" (third) step, and it displays the customization specification I had created. I select it and click Next. I now choose a resource to store the VM on, review the details, select storage, select networks, and then complete.
No where during the clone up to this point does it ask me to provide any of the customization fields I set in the spec.
Thinking it may ask me after the VM is finished cloning, I am instead greeted with an error reporting the following:
"An invalid argument "spec.identity.hostname" was specified."
I never provided a hostname; as stated above, I chose in the specification to ask me for the hostname.
The VM is created, though, and under its options I go to "Guest OS -> Customize Guest OS". I see the customization specification form I provided before, select it, and get a "User Settings" option with just three fields: NetBIOS name under "Computer Name"; IPv4 Address and IPv4 Subnet Mask under "Network Adapter 1 Settings". It does not ask me for the hostname (unless thats what it means by netbios name); it does not ask me for the gateway/router IP (I didn't provide a router IP in my spec sheet). I enter information here, boot it, and Ubuntu is hanging trying to get network access because that router IP wasn't provided at time of spec sheet creation; but again, I thought it would ask me this.
From the documentation I've seen, I should see a screen that lets me provide these customization options during the deploy process. At the very least, I shouldn't be getting an error that is interrupting the Create VM from Template process w/ customization spec, right? Or do I need to just provide the router IP for the spec sheet, and choose some other option for the hostname so I don't get that error, or just live with it and then go to Customize Guest OS after the create/soft fail?
Thank you all in advance!
↧
vCenter Server Appliance 6.7 Backup Solution
We have backed up VCSA using VDP so far. However, since VDP disappears from version 6.7, we are considering a backup method that can be easily obtained by another method. Please tell me if anyone knows a good way.
↧
↧
MigrateVm from writable NFS datastore
Hi guys,
I have .vmdk disks on NFS datastore.
I create a VM on other datastore and attach those disks.
Then I boot this VM and start migrate with changing storage only.
But migration at the end deletes original .vmdk from my NFS datastore.
How can I skip this step? I want to save data on my NFS share.
I use c# with vddk 6.7.
Thank you for any help!
↧
Retrieval of vCenter and Site data using python
Hello All,
After collecting inventory and performance data using propertyCollector, me and My team now wants to collect vCenter and Site data. If you know anything about which is the best way to retrieve it and which things it should contain, please share.
Thanks a tonnes for your time.
↧
storage/log/perfcharts files
what are these files for and can they be deleted in this folder?
↧
Unable to log into vCenter 6.7 VMware Appliance Management page
vCenter 6.7 fresh vCenter Server Appliance install with an embedded Platform Services Controller on a 6.5 ESXi host.
Stage 1: Deploy appliance - Completed successfully
Stage 2: Configure appliance - Completed sucessfully
When I try to log in as root on the VMware Appliance Management web:5480 page using the IP address of the server, I receive the error. Unable to login, NOT the error Unable to authenticate user. I can successfully log in using the console with root credentials. Used a variety of browsers and validated security settings. Any ideas?
↧
↧
Cannot Import OVF file from vCenter 6.7 to 6.5
Hello,
Im trying to export VM from vcenter appliance 6.7 to vcenter applicence 6.5
the export action create 4 types of files: NVRAM, OVF, VMDK, MF.
Once im trying to import the VM on the Vcenter 6.5 i get this Error: "Deployed an OVF with NVRAM is not suportted (incompatible vCenter version).
Somebody know how to reslove this issue?? thanks.
↧
Cannot synchronize host
Hi! Communities.
I see every 30 seconds a ESXi host in my vCenter environment had a Warning.
Cannot synchronize host hostesxi. A general system error occurred: optional value not set error.
I not be exactly how repair it, but maybe will solve the Host ESXi reconnecting to the vCenter.
I have a cuestion. Because these errors happen?
↧
Can I install vcsa on Free esxi?
Hi All, I have one esxi host and I would like to use vCenter to manage it - in particular, I would like to have update manager. The problem is that I do not want to buy a Windows Server license. I was wondering if is possible to stand up another esxi host in my environment - using free license, just to put the VCSA on it for updating my other licensed esxi instance? I am not sure if the free eSXI would allow me to run VCSA on it? Thanks.
↧