VMware Cloud Community
rickydlw
Contributor
Contributor
‎12-13-2021 03:32 PM

Log4J and VCSA with external PSC

I'm planning to run the script from this KB: https://kb.vmware.com/s/article/87088

However, I would like to know if I have to run on both PSC and VCSA VMs? I usually run security patch on PSC then vcenter.

My environment is 6.5 U3, VCSA with external PSC.

I'm seeing a lot of people having issue with the script in the forums and wonder if I should wait for the official patch from vmware.

Best,

R

0 Kudos
4 Replies
baijup
VMware Employee
VMware Employee
‎12-13-2021 03:44 PM

@rickydlw Thanks for posting the question. Yes, you need to execute the script on both PSC and VCSA VMs. Though order of execution doesn't matter for this script, you may execute the same on PSCs, followed by VCs.

rickydlw
Contributor
Contributor
‎12-13-2021 04:02 PM

Thank you for the quick reply. 

0 Kudos
skhanna00
Contributor
Contributor
‎12-13-2021 10:39 PM

There was an additional question.

Shall we wait for VMware patch or use this script?

0 Kudos
baijup
VMware Employee
VMware Employee
‎12-13-2021 10:59 PM

@skhanna00 As it is a critical vulnerability its recommended to protect the environment asap with the workaround. And, later when the patch is available you may patch the environment. 

0 Kudos