Cybersylum

vToolbelt – December 2022

byArron King 12.06.2022 vToolBelt

Hot Topics

VMware Security Advisories
- VMSA-2022-0028 – VMware Workspace ONE Assist – Authentication Bypass
- VMSA-2022-0029 – VMware Tools – Denial of Service

Upcoming Events

Cincinnati VMUG UserCON
December 8th 2022
8am – 4:30pm
In-person at the Sharonville Convention Center

The Cincinnati VMUG community welcomes you back to the Sharonville Convention Center to networkand engage in face-to-face conversations with your peers at the Cincinnati VMUG UserCon. Learn about the latest in IT innovations to help you stay on the cutting edge of technology. Advance your knowledge, become a better IT professional and grow as a strategic leader for your organization.

Continue reading “vToolbelt – December 2022”

vToolbelt – November 2022

byArron King 11.03.2022 vToolBelt

Welcome to November! For those of us in the midwest this means a

nearly endless need to rake and bag leaves. The first round isn’t so bad. When you get to the 5th round or later – not as fun ? Wherever you are – I hope you are well! Please send me a kind thought as I prepare for my 6th round of leaf duty. On to more interesting topics – this month’s newsletter contains a number of links that will help you start to prepare for vSphere 8

If you haven’t upgraded to vSphere 7 yet – there is still time. While vSphere 6.5 and 6.7 have left End of General Support and are now in Technical Guidance, VMware will still do their best to help you if you upgrade. Take a look at these upgrade planning tips and get started!

Hot Topics

OpenSSL 3.0 vulnerabilities (CVE-2022-3602 and CVE-2022-3786) – Read the VMware Response
If you haven’t signed up for the VMware Security Advisories mailing list – take a moment to do so. Sign up is on this page – right next to the RSS Feed link.
VMware Converter is back! Version 6.3 is ready for download!

Continue reading “vToolbelt – November 2022”

vToolbelt – October 2022

byArron King 10.01.2022 vToolBelt

Hot Topics

vSphere 6.5 and 6.7 will exit General Support on 10/15/22 and transition into TechnicalGuidance – This phase of the support lifecycle is focused on providing workarounds for lower severity issues. The full description of this phase including what support options are still available is described on the VMware Lifecycle Policy page.

Upcoming Events

Toledo VMUG – What’s new with vSphere 8 and vSAN
Date: November 16th, 2022
Time: 11:30am Eastern

Join the Toledo VMUG on this virtual Lunch-n-Learn to review what is new in vSphere and vSAN for version 8!

Continue reading “vToolbelt – October 2022”

vCenter Server Certificate Status Alarm

byArron King 09.16.2022 Certificates VCSA

Earlier this week I began receiving alarms from my vCenter regarding a Certificate Status Alarm. I had not run into this particular error before and it took me a bit of investigation to get it solved.

An unusual certificate description

The alert kept repeating on an hourly interval and I didn’t have a clue what this certificate was for:

This email is to notify you that an alarm has been triggered in your vCenter:
[Critical] Alarm alarm.CertificateStatusAlarm on Folder Datacenters because Certificate 'CN=Synology,OU=Synology,O=Synology,L=Unknown,ST=Unknown,C=Unknown' from 'SMS' expires on 2022-08-01 08:35:11.000.

Alarm name alarm.CertificateStatusAlarm
Description alarm.CertificateStatusAlarm
Target Folder Datacenters
Status Critical (previous status: Unset)
Triggered time 09/15/2022 08:45:42 PM

Continue reading “vCenter Server Certificate Status Alarm”

vToolbelt – September 2022

byArron King 08.28.2022 vToolBelt

Sending this newsletter a little early. Included below are links to an important Security Advisory and the live stream to the VMware Explore keynote on August 30th.

Hot Topics

VMware Explore keynote from the General Session on Tuesday will be streamed live on Tuesday 8/30 at 12pm EST.
A Security Advisory for VMware Tools was released on 8/23/22. VMSA-2022-0024 describes the impact as a local privilege escalation vulnerability.
- VMware Tools should be updated to 12.1.0.
- This VMware tools package can be added to your VMware environment so you can use vCenter to do the updates.
vSphere 6.5 and 6.7 are heading into End of General Support in 6️⃣ weeks- October 15th, 2022. If your environment is still running these versions – now is the time to start your upgrade. Check out this Upgrade Planning Guide to help you get started.

Upcoming Events

VMware Explore
August 29 – September 1, 2022
In-Person at the Moscone Center
San Francisco, California

VMware Explore starts this week!

The keynote from the General Session on Tuesday will be streamed live on Tuesday 8/30 at 12pm EST.

Learn more and Register

Continue reading “vToolbelt – September 2022”

Adding VMware Tools Updates to vSphere Lifecycle Manager

byArron King 08.24.2022 VMware Tools

Updated – 12/28/22 – based on user feedback I have updated this article.

There are times where VMware Tools updates are published outside of a vSphere release/update. This can be due to a bug fix or a security advisory (ie: VMSA-2022-0024)

This new VMware Tools package can be easily added to your ESXi hosts so your virtual machines can be updated. If you are still running vSphere 6.x, the VMware Tools package will be updated using Update Manager.

vSphere 7 introduced Lifecycle Manager which can now be used for this update. Here are the steps:

Create the Baseline

Click on the Baselines menu and click New -> Baseline

Continue reading “Adding VMware Tools Updates to vSphere Lifecycle Manager”

vToolbelt – August 2022

byArron King 08.18.2022 vToolBelt

Hot Topics

A few security advisories have been released recently for VMware products. If you operate any of these please take a few moments to review the information to see if it is applicable to your environment:
- Workspace ONE Access, Access Connector, Identity Manager (including vRealize Automation) – VMSA-2022-0021
- vCenter Server – VMSA-2022-0018
- vSphere ESXi – VMSA-2022-0020

Sphere 6.5 and 6.7 are heading into End of General Support in just a few months – October 15th, 2022. If your environment is still running these versions – now is the time to plan your upgrade. Check out this Upgrade Planning Guide to help you get started.

Upcoming Events

VMware Explore
August 29 – September 1, 2022
In-Person at the Moscone Center
San Francisco, California

Same event – new name! VMworld has become VMware Explore!

There are a variety of ways to pay for a pass. You can use PSO Credits (24 credits per pass). These can be purchased via OARnet. You can also pay with a credit card and there are 2 early bird discount periods. Please refer to the link below for details.

Check out the Content Catalog to start planning your sessions!

Important Date

July 19th – Breakout Session scheduling begins

Learn more and Register

Continue reading “vToolbelt – August 2022”

vCenter Server Backup – Failed to create backup directory on Backup Server

byArron King 08.15.2022 VCSA

I noticed an alarm in vCenter that indicated the vCenter Server Appliance (VCSA) was having trouble backing up. I logged into the VCSA Appliance Management interface (vCenter URL with :5480) to investigate. When I logged in, I found the following error:

Failed to create backup directory on Backup Server

Thinking there was something wrong on my SFTP server, I checked the username and password, file system permissions; but could find nothing wrong. I connected to the VCSA using root on SSH, and checked the log file at /var/log/vmware/applmgmt/backup.log. This provided some additional detail on the issue and showed the backup process was unable to authenticate to the SFTP server.

I tried the SFTP command manually and found the core of the issue:

For some reason, the SSH key has changed and needs to be updated in the local SSH Known Hosts file. Once I accepted this new key, the backup was able to complete successfully.

I am not sure what would have changed the SSH key. The only thing I can think of is that I had updated vCenter from 7.0 U3f to 7.0 U3g recently. I have verified the host is correct.

vToolbelt – July 2022

byArron King 07.08.2022 vToolBelt

Hot Topics

vSphere 6.5 and 6.7 are heading into End of General Support in just a few months – October 15th, 2022. If your environment is still running these versions – now is the time to plan your upgrade. Check out this Upgrade Planning Guide to help you get started.

Upcoming Events

VMware Explore
August 29 – September 1, 2022
In-Person at the Moscone Center
San Francisco, California

Same event – new name! VMworld has become VMware Explore!

Check out the Content Catalog to start planning your sessions!

Important Date

July 19th – Breakout Session scheduling begins

Learn more and Register

Product Support Watch

The following products are nearing the End of General Support. You can find the full list on the VMware Lifecycle Product Matrix.

vSphere – vCenter and ESXi

6.5 – 10/15/22
6.7 – 10/15/22

vSAN

6.5, 6.6, 6.7 – 10/15/22

NSX

NSX-V (all versions) – General Support ended January 16, 2022 – Customers should migrate to NSX-T

Continue reading “vToolbelt – July 2022”

DRS in Maintenance Mode feature not supported by license

byArron King 06.17.2022 vSphere

I was helping a customer with a question they ran into after upgrading from vSphere 6.7 to 7.0 U3. Their VMware vSphere environment upgrade was complete. They had just upgraded their licenses in the VMware Customer Connect portal. When they applied these license keys to their vSphere hosts

they received a warning that the DRS in Maintenance Mode feature was not supported with their vSphere Enterprise Plus license.

This made me dig into my memory banks a bit and I wanted to document it so I would remember. Maybe it will help a few others along the way…

vSphere License Keys and Upgrades

vSphere upgrades from 6.5 to 6.7 or 7.0 to 7.0 U3 are considered “point upgrades” and do not require license key upgrades

Major upgrades (from 6.x to 7.x) do require license key upgrades.

Major Upgrades and VMware Licenses

When you perform a major upgrade in vSphere, the installer triggers a short Evaluation mode that provides customers time to login to the Customer Connect portal and update license keys.

These Evaluation mode licenses include every feature available. When a new license key is applied, and there are features that will not be supported by the license, a prompt appears informing customers of any features that will not be available when the new license key is applied.

DRS in Maintenance Mode

DRS in Maintenance Mode refers to a feature released in vSphere 6.7 U2 for the ROBO Enterprise edition of vSphere. This feature:

Automatically migrates VMs to other hosts when it enters maintenance mode
Creates VM-Host affinity rules. These rules are used to automatically move the VMs back to the original host when it exits maintenance mode

vSphere Enterprise Plus licenses include the DRS and Maintenance mode capabilities. DRS in Maintenance Mode is a separate feature entirely and this prompt can be safely ignored.