"This results in the error No matching cipher suite on the server side, and a Handshake failure on the vSphere Client or vSphere PowerCLI side"
Background:
When installed on a Windows XP or Windows Server 2003 host machine, the vSphere Client and vSphere PowerCLI may fail to connect to vCenter Server 5.5 due to a Handshake failure. vSphere 5.5 uses the Open SSL library, which, for security, is configured by default to accept only connections that use strong cipher suites. On Windows XP or Windows Server 2003, the vSphere Client and vSphere PowerCLI do not use strong cipher suites to connect with vCenter Server.
- The solution is to allow weaker cipher in Vcenter5.5 and Esxi 5.5 Host
- Add the <cipherList>ALL</cipherList> parameter between the <ssl>...</ssl> section of the configuration file
- Please make sure you have a backup copy of the config file before edit
- For Windows-based vCenter Server
C:\ProgramData\VMware\VMware VirtualCenter\vpxd.cfg
For the vCenter Server Appliance
/etc/vmware-vpx/vpxd.cfg
For ESXi 5.5
/etc/vmware/rhttpproxy/config.xml
No comments:
Post a Comment