After a week of deploying VCSA 5.5 over and over again, probably 18 times, and seeing what must be every SSL related error possible, I am asking advice here for those who may have stumbled through this before. (Or know Linux)
On my last attempt I've installed fresh, configured the server, generated cert reqs through OpenSSL 0.9.8y, approved them through my internal CA, and attempted VMWare KB:
All goes well this time until step 22: Run these commands to register the vCenter Inventory Service back to vCenter Single Sign-On:cd /etc/vmware-sso/register-hooks.d
./02-inventoryservice --mode install --ls-server https://VCSA1.domain.com:7444/lookupservice/sdk --user administrator@vsphere.local --password sso_administrator_password
And I am rewarded with this:
| Getting SSL certificates for https://VCSA1.mydomain.com:7444/lookupservice/sdk |
com.vmware.vim.vmomi.core.exception.CertificateValidationException: Server certificate chain not verified
Return code is: SslHandshakeFailed
What gives?
The SSO service never gave me any errors when doing the cert install in previous steps. The FQDN is the same in the cert as it is on the VCSA on initial setup, and yes the same case.
VMWare KB yield nothing relevant as does a Google search.
HELP! I'm going crazy trying to figure this out.