{"id":7369,"date":"2023-11-28T19:50:36","date_gmt":"2023-11-28T18:50:36","guid":{"rendered":"https:\/\/tomaskalabis.com\/wordpress\/?p=7369"},"modified":"2023-11-28T19:53:19","modified_gmt":"2023-11-28T18:53:19","slug":"upgrading-vmware-vcenter-vcsa-7-0-3-to-8-0-2-fails-with-regenerate-certificates-for-sso-and-try-again","status":"publish","type":"post","link":"https:\/\/tomaskalabis.com\/wordpress\/upgrading-vmware-vcenter-vcsa-7-0-3-to-8-0-2-fails-with-regenerate-certificates-for-sso-and-try-again\/","title":{"rendered":"Upgrading VMware vCenter (VCSA) 7.0.3 to 8.0.2 fails with Regenerate certificates for SSO and try again."},"content":{"rendered":"\n\n\n

Upgrading VMware vCenter (VCSA) 7.0.3 to 8.0.2 fails with Regenerate certificates for SSO and try again.<\/h3>\n

We just started a upgrade process of VCSA 7.0.3 to the lastest build of VCSA 8.0.2. The customer migrated the VCSA from 5.5 > 6.0 > 6.5 and 7.0. When we were in stage 2 of upgrade, the validation failed on the \u201cRegenerate certificates for sso and try again\u201d<\/p>\n

\"\"<\/a><\/p>\n

Please do a SNAPSHOT or BACKUP of your VCSA, before follow steps below<\/h4>\n

So we connected to the VCSA source appliance and run certification manager (\/usr\/lib\/vmware-vmca\/bin\/certificate-manager). We choose the option 8 -\u201eReset all Certificates\u201c and answer the required information. Wait few minutes, the services in VCSA are restarted.<\/p>\n

<\/p>\n

We thought that if we started the validation in stage 2 again, that the problem would go away, not nothing happens – we still had the same error with sso certificates.<\/p>\n

When we tried to check the certificate on the vcenter UI, the cert was sucessfully renewed. But when we put the<\/p>\n

https:\/\/<vcenter\/psc fqdn>:7444\/lookupservice\/sdk<\/em> we got a old expired certificate and this was a main issue.<\/p>\n

The next steps was\u00a0<\/h4>\n

Regenerate a new VMCA Root Certificate and replace all certificates (option 4 in cert manager)<\/p>\n