VMware vCenter 7.0 U2 deployment fails at stage 2

This posting is ~3 years years old. You should keep this in mind. IT is a short living business. This information might be outdated.

Today I had to deploy a new vCenter appliance. Nothing fancy, new deployment. Stage 1 was easy, but stage 2 failed several times. I re-deployed the vCenter appliance two times, but as the deployment failed for the third time, I took a look into the logs.

The deployment failed without any error, but it didn’t finished. It stopped during the start of different services without any error.

First of all: Log into the appliance using SSH or the console. Use the root account and the root password you have entered during the setup.

A good point to start are the logs under /var/log/firstboot. I used ls -lt to get the last written logs. Most services will write two logs: One log ends with _stdout.log, and the second one will end with _stderr.log. The _stdout.log contails the log messages of the service. The _stderr.log contains the errors. I searched for a service that has written to a _stderr.log – and I found it: scafirstboot.py_10507_stderr.log.

And this log gave me a hint what the root cause was. One of the last log entries was:

ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: certificate is not yet valid

What what? A certificate not only has an end date, but also a date before which it is not valid – a start date. And this is often indicates a problem with – NTP. And it was NTP. I have configured NTP for the vCenter, but not for the ESXi on which I deployed the vCenter. -.- If it is not DNS, it’s NTP. Or a invalid certificate. Or both.

Rate this post

Author
Recent Posts

Follow me

Patrick Terlisten

vcloudnine.de is the personal blog of Patrick Terlisten. Patrick has a strong focus on virtualization & cloud solutions, but also storage, networking, and IT infrastructure in general. He is a fan of Lean Management and agile methods, and practices continuous improvement whereever it is possible.

Feel free to follow him on Twitter and/ or leave a comment.

Follow me

Latest posts by Patrick Terlisten (see all)

Failed to connect to IKEv2 VPN using iPhone USB tethering - June 26, 2023
Why you should change your KRBTGT password prior disabling RC4 - July 28, 2022
Use app-only authentication with the Microsoft Graph PowerShell SDK - July 22, 2022

0 thoughts on “VMware vCenter 7.0 U2 deployment fails at stage 2”

Bhaskar Raman November 8, 2022 at 18:12
I double checked my NTP, all is good. My first stage of vCenter 7.0 U3 G fails the first stage.
Error is ” The installer is unable to connect to the vCenter Server Management Interface”
Any assistance is appreciated.
ESXi host version is 7.0 U3 ——-DellEMC OEM version A07
ESXi hosts are connected over Fibre Channel, to external storage.