despite that I added this on the top of my script I got the below error message

Set-PowerCLIConfiguration -InvalidCertificateAction Ignore -Confirm:$false

At E:\Hardening_ESXi\Herdening_ESXi.ps1:182 char:11

+ $esxcli = Get-ESXCLI -VMHost * -V2

That error seems to be saying that it is trying to connect to a vCenter?

Yes I'm connected to vcenter and I just tested the script like this and same issue

$vcenter = Read-Host "vCenter name:"

$user = Read-Host "User:"

$password = Read-Host "Password:"

$FileHardening = 'E:\temp'

$esxcli = Get-ESXCLI -VMHost * -V2

$generatefile = ForEach ($line in $esxcli) { $line.software.acceptance.get.Invoke() }

$generatefile | Out-String | ForEach-Object { $_.Trim() } > "E:\temp\Software_AcceptanceLevel-config.txt"

$generateerrorfile = foreach ($line in (Get-Content -Path "E:\temp\Software_AcceptanceLevel-config.txt")) { if ($line -like "*PartnerSupported*") { } else { $line } }

if ($generateerrorfile -eq $Null) {

    Write-Host "All Hosts have PartnerSupported Software Acceptance"

} else {

    Write-Host "Hosts with wrong Software Acceptance detected"

    Write-Host "You need to modify them manually"

}

it works only If I do connect-viserver then I run the script

I'm not sure why you want to do the Get-EsxCli this way.

Can you try like this?

Thanks it's working fine   with just an error related to SSL/TLS

Just a question it's possible to add the hostname?

That TLS error probably indicates that one of the certificates is not correct or that the TLS level on one of the ESXi nodes is not set to the expected level.

Where do you want to add the hostname?

Thanks for the clarification I will check this on a new thread    

Hostname should be added after acceptance in oder to get information for the host(s) that may have a different Software Acceptance Level

Something like this?

I tested the script like this

Get-VMHost | ForEach-Object -Process {

    $esxcli = Get-ESXCLI -VMHost $_ -V2

    $obj = New-Object -TypeName PSObject -Property @{

        Msg = ($esxcli.software.acceptance.get.Invoke()).Trim()

        VMHost = $esxcli.system.hostname.get.Invoke().FullyqualifiedDomainName

}

    if($obj.Msg -match 'PartnerSupported' ){

        Write-Log -FilePath $LogFile -Message "Host $($obj.VMHost) have PartnerSupported Software Acceptance" -Level Success

    }

    else{

     if($obj.Msg -match 'VMwareAccepted' ){

        Write-Log -FilePath $LogFile -Message "Host $($obj.VMHost) have VMwareAccepted Software Acceptance" -Level Success

    else{      

        Write-Log -FilePath $LogFile -Message "Host $($obj.VMHost) have VMwareCertified Software Acceptance" -Level Success

    }

}

}

}

I got the below error :

You cannot call a method on a null-valued expression.

At X:\script.ps1:172 char:5

+     $obj = New-Object -TypeName PSObject -Property @{

+     ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    + CategoryInfo          : InvalidOperation: (:) [], RuntimeException

    + FullyQualifiedErrorId : InvokeMethodOnNull

I suspect that the Get-EsxCli cmdlets for one or more of the ESXi nodes fails.
This is probably related to the SSL error you were getting.

Try adding a try-catch

Thanks, you just put me on a track, the server had a restart message, I will test once started

Server rebooted same issue, checked with another vCenter also same issue

I guess you are right regarding the error message related to SSL/TLS

can we work with Get-Cluster | Get-VMHost -PipelineVariable esx instead of using $esxcli and obtain the same result?

I'm afraid not.
That information can only be retrieved via an esxcli command.

You could add a counter.

Thank you very much, it's perfect as a result