Launching soon: The world's first vendor agnostic bug scrubLearn more & join waitlist
OPERATIONAL DEFECT DATABASE
...
...
ESXi host deployment with autodeploy fails to boot and stuck at loading screen, with an error: /vmw/rbd/host/xxxxxxxxxx/waiter.tgz In the rbd-cgi.log file, you will see error similar to: 2019-06-04T09:53:07.602 [54236]ERROR:vmcacertutil: Could not generate certificates for: abcd.labs.comrc: 0 out: b'Error: 5, VMCAGetSignedCertificatePrivate() failedError Code : 5\nMessage :UNKNOWN\n'err: b"Operation Failed: exception <class 'vmca.vmca_exception'> not a BaseException subclass"2019-06-04T09:53:07.642[54236]ERROR:pluginmaster:exception:rbdplugins.sslcert.vmwWaiterTgz -- 0:b'Error: 5, VMCAGetSignedCertificatePrivate() failedError Code : 5\nMessage :UNKNOWN\n':b"Operation Failed: exception <class 'vmca.vmca_exception'> not a BaseException subclass"Traceback (most recent call last):Log Location: /var/log/vmware/rbdrbd.vmca2019-06-04T09:53:07.445 [35946]INFO:rbd-vmca-certificate:generating certificates for: abcd.labs.com, , 10.10.xx.xx, /var/lib/rbd/ssl/c621f01ff73023e0f1c0e4f8febc7d8d, rui.key, rui.crt2019-06-04T09:53:07.580 [35946]ERROR:rbd-vmca-certificate:Operation FailedTraceback (most recent call last):vmcad-syslog.log 2019-06-06T13:48:47.863098-07:00 info vmcad t@140531036313344: VMCACheckAccessKrb: Authenticated user waiter-eb015dbe-556e-4578-b4c7-c0eff6345c15@vsphere.local2019-06-06T13:48:47.867730-07:00 info vmcad t@140531036313344: Checking upn: cn=CAAdmins,cn=Builtin,dc=vsphere,dc=local against CA admin group: waiter-eb015dbe-556e-4578-b4c7-c0eff6345c15@vsphere.local2019-06-06T13:48:47.867942-07:00 warning vmcad t@140531036313344: error code: 0x00000005Log location : /var/log/vmware/vmcadNote: The preceding log excerpts are only examples. Date, time, and environmental variables may vary depending on your environment.
To recreate a missing waiter user and/or rectify the missing permissions
vCenter's waiter user is missing or does not have proper permissions. This may occur after fixing replication issues, a broken upgrade, or cross-domain repoint.
No Impact
To resolve this issue, use the attached script called 'recreate_rbd_waiter.sh' 1. Copy the script to the affected vCenter server appliance using a tool like WinSCP. 2. Modify permissions of the script so that it can be executed. chmod +x recreate_rbd_waiter.sh 3. Execute the script ./recreate_rbd_waiter.sh 4. Output should be shown as below: # ./recreate_rbd_waiter.sh RECREATE WAITER ACCOUNT ======================= > Please enter password for administrator@vsphere.local: > Waiter account name detected: waiter-747e2b48-8e05-4bfa-9b9b-7c161c336369 > waiter-747e2b48-8e05-4bfa-9b9b-7c161c336369 does not exist! Creating it... |---- Generating password SUCCESS! |---- Creating the waiter account SUCCESS! |---- The following will succeed even if already set |---- Add account to CAAdmins SUCCESS! |---- Set password to never expire SUCCESS! |---- Update password in database SUCCESS! > Script has finished. Please restart the rbd service. 5. Restart the RBD service: service-control --stop vmware-rbd-watchdog && service-control --start vmware-rbd-watchdog
N/A