如何在 vCenter 中重新生成 VASA Provider 证书

适用场景

• 适用于VMware vCenter Server的NetApp Element插件
• VMware ESXi

问题描述

• 如果vCenter中的SSL证书出现问题、用户可能无法通过适用于vCenter的Element插件(VCP)管理VVOL、而是会看到SSL证书错误。
• 存储提供程序可能 在vCenter中显示为活动、但ESXi主机显示为"未连接"。vVol数据存储库 显示"(非活动)"。
• ESX主机端的错误示例(/var/log/vvold.log)：

<DATE / TIME> warning vvold[2100222] [Originator@6876 sub=Default] VasaSession::GetEndPoint: failed to get endpoint, err=SSL Exception: Verification parameters:
--> PeerThumbprint: <thumbprint value>
--> ExpectedThumbprint:
--> ExpectedPeerName: <IP Address>
--> The remote host certificate has these problems:
-->
--> * unable to get local issuer certificate, using default
<DATE / TIME> info vvold[2100222] [Originator@6876 sub=Default] VasaSession::Initialize url is empty
<DATE / TIME> warning vvold[2100222] [Originator@6876 sub=Default] VasaSession::DoSetContext: Empty VP URL for VP (<hostname>)!
<DATE / TIME> info vvold[2100222] [Originator@6876 sub=Default] Initialize: Failed to establish connection