Virtual Library Posts

1. Login to VCSA over ssh
2. Go to folder /usr/lib/vmware-vmafd/bin/
   cd VCSA : /usr/lib/vmware-vmafd/bin/
3. Execute this command
   ./dir-cli user modify –account user_name –password-never-expires
4. Type Administrator@vsphere.local password

This procedure will show you how to identify the HPE ProLiant iLO via ESXi CLI.

1 – Enable SSH on the host you need the ILO
2 – Login to the ESXi host by ssh
3 – Then type cd /opt/hp/tools
4 – Then type ./hponcfg -w /tmp/ilo-conf.txt

In my case the customer removed the vSphere replication appliance, so I needed removed all vsphere replications.

1. Login to ESXi
2. Execute this command to list the VMS
   vim-cmd vmsvc/getallvms | awk ‘$3 ~ /^\[/ {print $1}’
3. Execute this command to remove the flag (you need replace VM id)
   vim-cmd hbrsvc/vmreplica.disable 1011

Follow this procedure if you want disable root password expiration by cli and clear password history:

• chage -M -1 root;
• echo””> /etc/security/opasswd

1. Take Snaphot
2.  Reboot VCSA
3. Click in E on Boot
   
4. On the GNU GRUB menu type rw init=/bin/bash after $systemd_cmdline. And press Ctrl-x or F10 to boot, as shown below.
   
5. Change the  Password
   mount -o remount,rw /
   passwd
   umount /
   reboot -f
6. Change Expired Password – chage -I -1 -m 0 -M 99999 -E -1 root

Keeping CDROMs plugged into Virtual Machines can inhibit DRS/vMotion from working well for these Virtual Machines, as such it is best practice to remove CDROMs when not needed, so follow the commands to identify them.

List all Virtual Machine with CDROM connect:

Get-VM | Get-CDDrive | Where {$_.extensiondata.connectable.connected -eq $true} | Select Parent

Disconnect all CDROM from all Virtual Machine

Get-VM | Get-CDDrive | Where {$_.extensiondata.connectable.connected -eq $true} | Set-CDDrive -NoMedia -confirm:$false

Offline Installation of VMware PowerCLI Module

• Login to a desktop  with internet access and open powershell (Execute as administrator)
• Find-Module -Name VMware.PowerCLI
• Save-Module -Name VMware.PowerCLI -Path Path
• Copy the files you downloaded to the offline desktop
  
• Move the copied files to C:\Windows\System32\WindowsPowerShell\v1.0\Modules (Execute as administrator)
  

Install VMware PowerCLI Module From PC With Internet Connection

• From a desktop with an internet connection open powershell (Execute as administrator)
  
• Find-Module -Name VMware.PowerCLI
• Install-Module -Name VMware.PowerCLI -Scope CurrentUser
• Get-Command -Module *VMWare*

You can’t put your host in maintenance due to this error “Failed to enter namespaces maintenance mode due to Error com.vmware.vapi errors.unauthenticated”

It’s time to check if you have a certificate expired, login to VCSA over ssh and execute this command:
for store in $(/usr/lib/vmware-vmafd/bin/vecs-cli store list | grep -v TRUSTED_ROOT_CRLS); do echo “[*] Store :” $store; /usr/lib/vmware-vmafd/bin/vecs-cli entry list –store $store –text | grep -ie “Alias” -ie “Not After”;done;

The WCP certificate are expired

[*] Store : wcp
Alias : wcp
Not After : Jan 10 11:48:31 2023 GMT

To renew the certificate execute this command /usr/lib/vmware-vmca/bin/certificate-manager with option 6 “Replace Solution user certificates with VMCA certificates”

1.Log in to the vSphere client and navigate to the cluster on which you want to disable vCLS.
2.Copy the cluster domain ID from the URL of the browser. It should be similar to domain-c(number).
The URL will be something like this:

https://<fqdn-of-vCenter-server>/ui/app/cluster;nav=h/urn:vmomi:ClusterComputeResource:domain-c3607:1A5CDE27-53A4-435D-88B7-1A072F54A13C/summary

Copy the domainc##### part

3. go to vcenter –} advanced settings –} edit settings
4. Add a new entry, config.vcls.clusters.domain-c(###number).enabled. Use the domain ID copied in Step 2.
5. Set the Value to True
6. Click Save.