Hi Folks,

Hoping somebody can help. My Environment is a follows

vCD 5.1

vCenter 5.1

vSM  5.1.2

Up until yesterday everything worked just fine. vCloud users could create vApps, add VM,s Create vApp networks, join the vApp network to an external network and configure NAT, all within vCD. vCD(service account) would then create the portgrups in vCenter, vSM then deployed the EDGE in vCenter, all worked perfectly. Now for some reason vShiled Manager is unable to deploy the edge. vCD throws up these error messages when trying to deplay the Edge:

Unable to deploy network "Training-vSheild(urn:uuid:3cea8772-3c16-48a9-9ced-bfb1e9ba538a)".

org.springframework.web.client.RestClientException: Unrecognized vShield Manager response. vShield Manager is unable to process the request or some other error occurred at vShield Manager, please check vShield Manager logs for details.

I cannot find more details specific to this in the vSM.

I have take a a look at the vCD logs and can see things like:

DELETE request for "https://10.207.131.68:443/api/2.0/xvs/switches/dvs-65/networks/dvportgroup-37283" resulted in 403 (Forbidden); invoking error handler

Error deploying vApp:

Unable to deploy network "Training-vSheild"

I can ping VSM from vCD so there is connectivity. VSM can see vCenter. Not sure whats broken here.

What are my options?

thanks folks.