Bridgeways VMWARE ESX/VC subscriptions fails

28 Nov

 

Problem:

You want to add a new VC server to the Bridgeways ESX monitoring using the “Bridgeways VMware Management Administrator” tool. But the connection always fails. You checked everything user / pwd / IP , all okay

Analyze:

1) First check if the network routing is okay. Open IE and type https://<ip>/sdk

You should get a SSL warning. If not you will have to check networking.

2) If you checked networking and you can connect to the VC but still get no SSL warning you have a SSL RSA problem.

Solution:

On Windows 2008 and above the RSA minimum bits are 1024. All other certificate length will be blocked. See http://support.microsoft.com/kb/2661254?wa=wsignin1.0 .

So check you certificate properties and look for the RCA bits length. I think it will be 512Bits.

To solve this:

Open under admin a CDM console and execute this.

Certutil -setreg chain\minRSAPubKeyBitLength 512

Now retry your add action.

 

Happy Scomming

Michel Kamp

Advertisements

2 Responses to “Bridgeways VMWARE ESX/VC subscriptions fails”

  1. Vincent November 29, 2012 at 14:05 #

    Only keys smaller than 1024 bits are blocked as per your linked article (and not smaller then 2048 bits). Keys with the size of 1024 bits are still accepted by the new security requirements.

    • Michel Kamp November 29, 2012 at 15:08 #

      Hi,

      You are completely correct. I will change it in the post. Typos happen 🙂 Thanks for reporting Michel

      ________________________________

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: