بسته بروز رسانی Vcenter 6.5

هنوز یک هفته از انتشار نسخه جدید Vcenter نمی گذرد که Patch بروز رسانی برای آن منتشر میشود !! البته همه ما به انتشار پیاپی بسته های بروز رسانی شرکت Vmware عادت کردیم و متاسفانه در استفاده از این بسته ها که معمولا برای برطرف شدن مشکلات امنیتی است , جدای از عدم دسترسی با IP های ایرانی با مشکل حجم  بالای این بسته هانیز روبرو هستیم , در حال حاضر تیم NewAdmin در حال رایزنی با ارائه دهندگان عمده اینترنت جهت تخفیف و یا رایگان شدن ترافیک استفاده از سایت است که امیدواریم به نتیجه برسد.

اما بسته بروز رسانی Vcenter 6.5 که در این مطلب به اشتراک گذاشته شده است  مخصوص VCSA نسخه 6.5 و 6.5u1 است هر دوبسته برای برطرف کردن مشکل واحدی است که در این نسخه پیش امده و در زیر به آن اشاره شده است. پس از بروز رسانی نسخه U1 به Build number 7119157 و نسخه 6.5 به Build number 7119070 تغییر خواهد کرد.

در این مطلب  قبلا نحوه بروز رسانی این سرویس یه صورت کامل شرح داده شده است

VCSA-6.5.0U1c-Appliance-Patch

VCSA-6.5.0f-Appliance


Symptoms


vCenter Server Appliance (VCSA) or Platform Services Controller (PSC) deployment fails when you try to deploy, upgrade, migrate, or restore to version 6.5.0GA (4602587) and 6.5.0a (4944578).


Note: This does not affect VCSA/PSC 6.5GA or 6.5.0a deployments prior to October 22, 2017 daily operations. Only restoring to 6.5GA or 6.5.0a will trigger this issue.

When you use the impacted build, you will see the following symptoms:
  • Deployment hangs at 80% during Stage 1 without error message.
  • The Installer.log file displays similar to:
2017-10-26T15:15:34.596Z – debug: Failed to get url of file in guest vm:ServerFaultCode: Failed to authenticate with the guest operating system using the supplied credentials.
2017-10-26T15:15:34.596Z – debug: [1]pollRpmInstallProgress:getGuestFileErr:ServerFaultCode: Failed to authenticate with the guest operating system using the supplied credentials.
  • In the /var/log/messages file of a freshly deployed VCSA, you see similar to:
2017-10-26T15:22:31.720015+00:00 localhost useradd[3196]: pam_unix(useradd:account):expired password for user root (password aged)
2017-10-26T15:22:31.720370+00:00 localhost useradd[3196]: Authentication token is no longer valid; new one required
2017-10-26T15:22:31.720632+00:00 localhost useradd[3196]: failed adding user ‘cm’, data deleted
2017-10-26T15:22:31.724506+00:00 localhost groupadd[3198]: pam_unix(groupadd:account): expired password for user root (password aged)
2017-10-26T15:22:31.724818+00:00 localhost groupadd[3198]: Authentication token is no longer valid; new one required
2017-10-26T15:22:31.755178+00:00 localhost vaos[1059]: USER PID ACCESS COMMAND
2017-10-26T15:22:31.755413+00:00 localhost vaos[1059]: /var/lib/rpm/Packages:
2017-10-26T15:22:31.762300+00:00 localhost vaos[1059]: 2017-10-26T15:22:31.761Z: RPM Installation failed
  • In the /var/log/firstboot/cloudvm.log file, you will see similar to:
usermod.bk: group ‘cis’ does not exist
/usr/sbin/usermod.bk -a -G cis cm
Traceback (most recent call last):
File “/usr/sbin/usermod”, line 19, in <module>
errcode = subprocess.check_call(sys.argv)
File “/usr/lib/python2.7/subprocess.py”, line 540, in check_call
raise CalledProcessError(retcode, cmd)
subprocess.CalledProcessError: Command ‘[‘/usr/sbin/usermod.bk’, ‘-a’, ‘-G’, ‘cis’, ‘cm’]’ returned non-zero exit status 6
error: %pre(vmware-cm-6.5.0-4944578.x86_64) scriptlet failed, exit status 1
error: vmware-cm-6.5.0-4944578.x86_64: install failed

Cause


VCSA 6.5 enforces a root password expiration of 365 days from the appliance OS build time.

At this time 6.5GA and 6.5.0a contains an expired root password.

Note: VCSA 6.5U1 will begin experiencing this issue after July 1, 2018.


Resolution


This is a known issue affecting vCenter Server Appliance 6.5.

Note:

This re-released version of vCenter Server Appliance 6.5 has known security issues. These issues are documented in VMware Security Advisories and the release notes for VMware vCenter Server Appliance Photon OS Security Patches. For example the Open Source security issues listed in VMware Security Advisories VMSA-2017-0004 and VMSA-2017-0007 are critical severity and are applicable to vCSA 6.5. VMware recommends adopting the latest version of vCenter Server Appliance 6.5 in order to remediate the known security issues

This table lists the recommended workarounds for VCSA:

درباره نویسنده

newadmin

پاسخ دهید