- How to use VMware vSAN ReadyNode Configurator - Fri, Dec 17 2021
- VMware Tanzu Kubernetes Toolkit version 1.3 new features - Fri, Dec 10 2021
- Disaster recovery strategies for vCenter Server appliance VM - Fri, Nov 26 2021
You know you can easily join and link together several vCenter Servers. You can also manage all remote datacenters, each of which has its own vCenter Server, from a single console.
The architecture of our situation is simple. We have two remote sites: the main datacenter and a remote site. Both sites runs vCenter Server Appliance (VCSA) with Platform Service Controller (PSC) embedded. The remote datacenter was linked into the main datacenter, so you can manage both vCenters from a single console. However, there was a fire at the remote site, and all IT (including vCenter Server) backups are gone.
Yes, sometimes there may be a situation where you've lost a whole site or a whole vCenter Server at a remote site, and you'll need to reinstall from scratch.
In your main vSphere Client console, you'll see a warning within your vSphere user interface telling you your remote vCenter Server is no longer accessible. You must delete this linked vCenter Server before reinstalling and rejoining it back in.
Could not connect to one or more vCenter Server systems
If you know that this vCenter Server will never come back or be restored, you can safely remove the link from your principal vCenter Server.
If you reinstall the remote vCenter Server with a different name, you'll be able to join the old name in linked mode. However, it will still be showing, and this message will keep coming back—annoying indeed.
This message will not go away unless you click the X (close) button, but each time you log back in, it will show up again and again.
There is no simple way to deactivate or suppress this message as you can do, for example, for VMware virtual storage area network (vSAN) alerts and messages.
Recently we published a guide on how to change a vCenter Server Single Sign-On (SSO) domain. Here you can rename and disjoin a vCenter Server from your existing installation due to company spin-offs, acquisitions, and so on.
But this procedure only works if the particular vCenter Server is still there and replies. When you have a vCenter Server that is lost and never coming back, you must use another way to suppress this message and remove this orphaned or dead vCenter Server linked mode server from your organization.
Please note that you'll do this only in case you are certain you won't be able to restore the vCenter Server from your remote site.
We need to make sure we have Secure Shell (SSH) access to the main VCSA. To verify this, simply log in via https://ip_of_vcsa:5480, go to Access > SSH Login, and enable the SSH access and Bash shell.
Log in as the root user and type "shell" to enter the Bash shell.
We will run the cmsso-util and unregister command to unregister the stopped VCSA with embedded PSC from our organization.
The general syntax is:
cmsso-util unregister --node-pnid Platform_Services_Controller_System_Name --username administrator@your_domain_name --passwd 'vCenter_Single_Sign_On_password'
So in our case, it is:
cmsso-util unregister --node-pnid vcsaphoton3.lab.local --username administrator@your_domain_name --passwd mysuperpassword
Unregister an orphaned vCenter Server
The system has to reconfigure SSO and start/stop all associated services, so it might take a good five to ten minutes.
After a while, you can come back and log into your vCenter Server, where you'll see you no longer have the message.
vCenter Server client
The cmsso-util command is useful for VCSA with embedded PSC or for PSC that runs as a separate virtual machine (VM). However, external PSCs are slowly phasing out.
The command has several functions. VMware introduced it in vSphere 6.7 U1 and further enhanced it in vSphere 6.7 U3.
Perhaps we'll see this command-line interface (CLI) tool integrated within the user interface (UI) in the next major release of vSphere. Who knows?
So for now, we need to process these steps manually via the command line; however, the CLI is very robust.
Subscribe to 4sysops newsletter!
VMware is slowly integrating these CLI tools into the UI. As an example, we can see this with the converge tool integrated as a UI workflow. Since the release of vSphere 6.7 U2 and its architecture improvements, you can decommission external PSCs into embedded ones via vSphere Client only, without using the CLI.
Hi Vladan,
what about PowerCLI?
Thanks Leos
I don't think that there is a PowerCLI cmdlet for cm-sso util command. But I can be wrong … -:)
Excellent Fix, other KB's were not helpful, this was the ultimate fix. Thanks.
Huge help. Thank you!
Thank you. Solved
I was to fast un-register my test Vcentrer using your manual. Is there way to restore it back ? I still have output of command /usr/lib/vmidentity/tools/scripts/lstool.py list –url http://localhost:7080/lookupservice/sdk –type vcenterserver.
???
The best is to re-deploy second vCenter server and re-connect to the SSO.
Thank you for reply. DO you know if it still possible to restore network configuration?
I have esxi hosts which are still up & running and use DS switch. Once I populated a new Vcenter what is procedure to connect back ESXi and restore config ?
My old vcenter is still available i can ssh to it.
Oh, you've lost the first vCenter server UI too? Then the best is to restore from backup. I hope you have setup file level backup of your VCSA…. If not and you're without support, the best would be to redeploy a clean vCenter sever, then add your ESXi hosts to datacenter, create cluster, activate cluster's services, and add your hosts to the cluster..