Yep, you're right. GSS noticed me about this KB this week, which solved the issue.

VMware Knowledge Base

Thnx

As soon as I go to that link, it asks for RSA passcode - don't have one.

And no article comes up if I search for kb55092 - could anyone point me to right direction, have that error and not sure how to fix it

The first link shows https://kb.vmware.com/s/article/55092 but is actually redirecting to https://ikb.vmware.com/s/article/55092. If you go to the following link VMware Knowledge Base, like TacoSauce​ mentions, you should be able to access the knowledge base article.

Let me check to see if I have the same behaviour. I currently have the same message in the H5 client but haven't had the time yet to implement the KB. It might take me some days to come back with the results though.

I executed the actions in the KB and everything went as described. I checked both the Web Client and the H5 Client and had the same behaviour as you described being the error now present in the Web Client but resolved in the H5 Client. Then I rebooted the VCSA as I couldn't restart the Web Client service from within the VCSA. Afterwards I checked and both the Web Client and the H5 client were working.

Hi all,

After replacing the vpxd-extension certificates I found that NSX stopped functioning (Hosts could not be prepared with "Error occurred while communicating with EsxAgentManager". After investigating I found that this was due to the new vpxd-extension certificates not being installed in the ESX Agent Manager. If you encounter this issue it can be fixed by following the following KB: https://kb.vmware.com/s/article/2112577

Kind regards,

Adrian Begg

What did you already do to resolve this? I have noticed the message after upgrading from 6.5 U2 to 6.7.

I did delete all certificates and recreated them, but nothing changed - I do not want to do the workaround which is described in the KB since, the KB is saing that the issue was resolved in version c

Did you reboot the VCSA afterwards? I saw that I needed to reboot the appliance for the vSphere Web Client to pickup the new cert. While it should be possible to restart the relevant services, I did not invest the time to find which service needed to be restarted. I did restart the Web Client service but no avail so I went to restart the VCSA.

Yes I did restart the VCSA and just did that again, but nothing changed.. I am really confused here, still do see this error message when I try to access the update manager from the HTML5 GUI:

com.vmware.vim.vmomi.core.exception.CertificateValidationException: Server certificate assertion not verified and thumbprint not matched

When I look at the vpxd-extension certificate using the HTML5 GUI this does look like in the attachment. Really happy if someone has an idea.

Quick update on that topic, since it did not make any sense to me I did a fresh installation with version 6.7c where the bug regarding to the linked KB should be fixed. And look at that, I did nothing different and all certicates are working as expected, after that I did an update from 6.7c to 6.7d and everything is still fine.

Hi All,

I have same error on my vSAN tab for HTML client, Is the same KB applicable in this case.

Thank You,

Ashkar