VMware Cloud Community
shane1973
Enthusiast
Enthusiast
‎03-07-2018 08:24 AM

Failed to connect to VMware Lookup Service

I just started getting this error when trying to connect to the web console of one of our vCenter VCSAs. It had worked fine previously. I am unaware of any configuration changes since the last time this worked (within the past couple of weeks).

I found this article VMware Knowledge Base  and what I found unusual is that in regards to this "/etc/init.d/vmware-sso restart" I don't have the 'vmware-sso' file in the init.d directory. I have the other 2 files, and can restart like the article mentions (our vCenter isn't connected to AD).  I've done the certificate regeneration already. I continue to get the same error. I've made sure the hostname is correct using the /opt/vmware/share/vami/vami_config_net command, and also when logged into port 5480 of the web console the hostname is correct. 

Any ideas?

Reply
0 Kudos
7 Replies
msripada
Virtuoso
Virtuoso
‎03-07-2018 10:38 AM

What is the VCSA version?

If it is VCSA 6.x, can you check if the services are started or kindly check the certificates if they are expired?

BTW -> vmware-sso is only 5.1 vcsa service

service-control --status --all shows the service status in 6.x

If VCSA 5.x -> try to access https://VCenterFQDN:7444/lookupservice/sdk -> on the browser and check the certificates are active or expired.

If expired, you need to use this KB VMware Knowledge Base

Thanks,

MS

Reply
0 Kudos
shane1973
Enthusiast
Enthusiast
‎03-07-2018 01:47 PM

VCSA version 5.5.0.20200

5.5.0.20200 Build 2183109

Reply
0 Kudos
shane1973
Enthusiast
Enthusiast
‎03-07-2018 01:49 PM

certificate presented in browser uses correct FQDN of the vCenter appliance, and the expiration date is 2027

Reply
0 Kudos
msripada
Virtuoso
Virtuoso
‎03-07-2018 02:01 PM

check what is the certificate for https://vcenterfqdn:443 and see if that is pointing to right fqdn

Reply
0 Kudos
shane1973
Enthusiast
Enthusiast
‎03-09-2018 06:05 AM

Same thing, correct FQDN, expires 2027

Reply
0 Kudos
shane1973
Enthusiast
Enthusiast
‎03-09-2018 07:30 AM

I did just notice that when logged into the VCSA web console port 5480, the 'Network' tab lists the name of the device but not the FQDN. When I go to the 'Address' tab it will not allow me to edit the name to be the FQDN. I go to save it and it says it can't be saved

Reply
0 Kudos
shane1973
Enthusiast
Enthusiast
‎03-09-2018 08:42 AM

Turns out this was the issue. Although I am fairly confident we had edited this file once already. VMware Knowledge Base

After adding the line HOSTNAME=fqdn then restarting services I could log in via https://fqdn:9443

Reply
0 Kudos