We put our vcenter behind a BigIP loadbalancer port 443 VIP.
Now when we connect through this VIP its 90% functional, except when we attempt to open a console window to a VM, we get the error:
ssl verification failure for "newVIP" due to a host thumbprint mismatch.
So far I have not found a KB doc addressing this - anyone seen this?
thanks
The vSphere client needs access to TCP/902 on the ESX host for the remote console. If the loadbalancer also handles the traffic to the ESX, the error makes sense: it looks like a "man in the middle" attack to the client.
Thanks for the feedback - I suspect the SSL verification is failing before the port 902 traffic even starts to flow.
Whats the procedure to clear the host thumbprint mismatch ?
Perhaps vmware support can dig it up...opening a case...
thanks
Were you able to get a response from support on a solution? We are looking into doing this as well.