Site Recovery Manager - SSL error - Certitifcate chain mismatch

 Recently SSL certificate was expired for the vCenter Server Appliance , So we regenerate the certificate  and installed  on VCenter appliance but forget to update the SSL certificate on SRM server

Problem identified on SRM server after regenerating the SSL certificate of my vCSA was that I could not longer connect to Site Recovery Manager using vSphere Client.


It would try to connect and then fail with a Connection Error.

As I knew this was working prior to regenerating the SSL certificate, I guessed that SRM was still trying to authenticate with the vCenter Server using the old SSL certificate.

Checking through the SRM logs (\ProgramData\VMware\VMware vCenter Site Recovery Manager\Logs\) confirmed that my assumption was correct:
srmerror2

The SRM logs show a certificate error:
Failed to connect: std::exception 'class Vmacore::Ssl::SSLVerifyException' "SSL Exception: Verification parameters:
.......
The remote host certificate has these problems:
.......


 I could think of in order to solve my issue was to alter the installation of SRM to update the certificates.


Log into the SRM server, open up Programs and Features from the Windows Control Panel. Select the entry for VMware vCenter Site Recovery Manager and click Change.
At the SRM wizard, select Modify.

After selecting modify option , I could see it was asking for vCenter server credentials.



Select “Automatically generate certificate.”.




Ensure you select Use existing database, otherwise you will lose all your protection groups and recovery plans.







Once the SRM installer was finished, I was able to reconnect to SRM using vSphere client.



Email Post

Comments

Post a Comment

Popular Posts