vRA 7.x APIs return error 500 when connecting to Postgres DB
book
Article ID: 327432
calendar_today
Updated On:
Products
VMware Aria Suite
Issue/Introduction
Symptoms:
Various automated tasks within the vRealize Automation Appliance Management Interface (VAMI) time out with commands left in a QUEUED state because Management Agent(s) do not pick up tasks from the virtual appliance. See below for a list of symptoms:
Applying a Cumulative Update fails with an error similar to the below:
Exception occurred while applying selfpatch.
<Date> 09:32:06,404 - __main__ - ERROR : 259 - ('Command execution of all commands did not finish within the defined timeout time.\nCommand execution result:\nCommand id: <ID_number>\n Type: upgrade-management-agent\n Node id: <id_Number>\n Node host: ComponentNodeFQDN\n Result: \n Result description: \n Status: QUEUED\n\n', 'Error executing command')
Unable to change an IaaS certificate from the VAMI Certificates tab. When the Manager Service is selected the UI spins indefinitely, displaying a message similar to
VAMI is loading Manager Service host...
/var/log/vmware/vcac/vcac-config.log contains messages with mentions of expired x509
<Date>T14:38:27.919762-04:00 vraFQDN [database-failover-agent][3876]:
<Date> 14:38:27 GetMasterStatus(): error querying database (localhost): x509: certificate has expired or is not yet valid
Management Agent's All.log contains errors similar to
[UTC:YYYY-MM-DD 08:36:45 Local:2021-09-29 10:36:45] [Error]: [sub-thread-Id="8" context="" token=""] DynamicOps.Common.Client.HtmlResponseException: Internal Server Error (500)
Request:
GET https://<FQDN>:5480/config/nodes/<Node_Id>/commands/next-command
Response:
Failure: Internal server error.
Running the command vra-command list-nodes --components within a SSH session to any VA returns errors similar to
SSH / PuTTy into each replica node and run the following
Copy the new certificates using SCP or another file transfer utility such as WinSCP.
Replace the current certificate /storage/db/pgdata/server.crt and private key /storage/db/pgdata/server.key with the copied certificates from the primary.