VMware {code} Community
cyberpaul
Enthusiast
Enthusiast
‎05-15-2018 12:54 PM

VDDK 6.7 self-signed SSL certificate issue

Hi all,

it seems that VDDK 6.7.0 cannot cope with vCenter Server / VCSA with self-signed SSL certificates. It does connect to the host, but any attempt to open a virtual disk using NBDSSL transport method fails with the following:

Debug: SSL Error: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed

Warning: [NFC ERROR] NfcNewAuthdConnectionEx: Failed to connect to peer. Error: The remote host certificate has these problems:

Warning:

Warning: * self signed certificate in certificate chain

Warning: SSL: Unknown SSL Error

Error: You do not have access rights to this file

Here we go again: why on earth is this forced? Is VMware trying to increase security? What if the vCenter is not managed by me, I just need my application to work?

Well, the obvious workaround is to switch to NBD transport mode, which in turn decreases security significantly. Job well done.

Have I missed a config option somewhere? Or is this just an annoying feature that will disappear in the following releases?

Sigh.

0 Kudos
2 Replies
Fifty8
Contributor
Contributor
‎07-16-2018 12:35 PM

Did you try VDDK 6.7 EP1? Works for me.
0 Kudos
Jerryjieca
Contributor
Contributor
‎12-26-2020 10:12 PM

I am facing exact same issue. 

0 Kudos