VMware Cloud Community
rwspiegel
Contributor
Contributor
‎09-01-2008 07:41 AM

VUM: Scan for Updates error

Hello,

I'm trying to scan my ESXi 3.5.0 hosts from a v1.0 install of VMware Update Manager. When I scan (from VI Client), I get an error in the VI Client Events window "fault.PatchIntegrityError.summary". When I check logs on VUM server, I find the following:

Starting task SingleHostScanTask

Task started...

Patch depot url:

FirewallSystem not supported on host

Platform Configuration Error:

Task execution has failed: SingleHostScan : Platform Configuration Error:

A subTask finished: VciHostScanTask

Looks like it's failing at "FirewallSystem not suported on host" line. Is this referring to the ESXi host, or VUM (Windows 2003) hosts? I am not running Windows Firewall on the VUM server.

This is a new install of VUM, and it has not been configured/worked in the past. Anyone know how to fix this?

Thanks

Rolfe Spiegel

0 Kudos
6 Replies
Texiwill
Leadership
Leadership
‎09-01-2008 10:49 AM

Hello,

Moved to VI: VirtualCenter Forum


Best regards,

Edward L. Haletky

VMware Communities User Moderator

====

Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.

CIO Virtualization Blog: http://www.cio.com/blog/index/topic/168354

As well as the Virtualization Wiki at http://www.astroarch.com/wiki/index.php/Virtualization

--
Edward L. Haletky
vExpert XIV: 2009-2023,
VMTN Community Moderator
vSphere Upgrade Saga: https://www.astroarch.com/blogs
GitHub Repo: https://github.com/Texiwill
0 Kudos
kjb007
Immortal
Immortal
‎09-01-2008 02:02 PM

I assume you are using virtual center. Are you using the VUM that came with the version of VC that you are running?

-KjB

vExpert/VCP/VCAP vmwise.com / @vmwise -KjB
0 Kudos
rwspiegel
Contributor
Contributor
‎09-01-2008 02:09 PM

I'm running update manager from the same machine that VC is installed on.

Update manager is v1.0, client version is 1.0.0.65965.

Since posting my last question, I've run VMWare Infrastructure Update on both ESX hosts. Now I'm getting a different error, "metadata for patch missing". I've seen lots of posts about this error... still working on it.

Thanks

0 Kudos
Pmarsha1
Enthusiast
Enthusiast
‎09-04-2008 06:45 AM

Scans failing are usually because you ESX Hosts don't have access to VC via HTTP/HTTPS

In my case adding port 443 TCP out on the ESX Hosts cleared the problem.

The metadata issue is probably that you don't have access to the internet. If you are using a Proxy the Update Manager service will likely have to be run under a user account that has access to the internet and Local Admin rights on the VC Server. Make sure you configure the Proxy IP Address/Name and port only

0 Kudos
markc
Contributor
Contributor
‎09-25-2008 03:07 AM

I had simular error on one of my ESX Host and its was down to time the ESX Server was a couple of minutes in front of the Virtual Centre Server.

0 Kudos
markzz
Enthusiast
Enthusiast
‎04-23-2009 04:15 AM

I have a similar error when trying to performa an Update Scan of an ESX Host.

I suspect this in my case is caused by the Checkpoint Firewall.

I'm asking the Firewall tream to check ports 80, 443, 902, 9000-9100 are open

0 Kudos