Menu

Virtual Geek

Tales from real IT system administrators world and non-production environment

Stuffs from real IT system ADMINISTRATORS world and my LAB

Configure vCenter 7 Profile from PowerShell GUI

While working on POC of new feature VMware vCenter Server 7 Profiles, as there is no GUI available to configure it. At the moment of writing it can be only consumed and configured with Rest APIs. Although Rest API can be configured from vCenter Server developer center > API explorer, but it is not that easy and user friendly to use it. So I thought on writing and giving graphical user inteface w…

Read more

VMware vCenter Server 7 Profiles with PowerShell

There is new feature introduced with VMware vSphere 7.0 and it is completely different from the ESXi host profiles. vCenter Server 7 Profiles feature allows you to list profiles, export vCenter server configuration from one vCenter server and then import and validate on another destination vCenter Server. All the operations are done using REST APIs and at the moment of writing no GUI is available.…

Read more

VMware vCenter server backup error Path not exported by the remote filesystem

Check article for more details on: ​Backup VMware vCenter server using SMB protocol

While testing and working on creating backup schedule on VMware vCenter server appliance vami portal (Port 5480), I was receiving below error, whenever I was pressing Create button. Input which I typed Backup Location and Backup Server credentials were correct.

Path not exported by the remote filesyst…

Read more

Get started and configure certificate-based authentication in Azure

Connecting SSL certificate based login to Azure can help increased authentication security, if you maintain certificates very well. In my case I wrote few scripts and I wanted to automate  Azure. As my user account is configured with MFA (My scripts scheduling was failing due to this) and I didn't want to decrease the security by disabling multi factor authentication in any case.

In this sit…

Read more

How to view the service principal of a managed identity in the Azure portal, Powershell and AzureCLI

After enabling/deploying managed identity (service principal) on VMs, one of my junior colleague questioned me, where is service principal of managed identity is stored. Basically Service Principal (MSI) is a user account (Service Account ) and it is created under Azure Active Directory, but after few checks there was question again, where she can find same information under AAD now? For this, I p…

Read more

Use a Azure VM system assigned managed identity to access Azure Key Vault

While working one of the Azure project, I had a requirement to implement System Assigned Managed Identity to access Azure key vault secret programatically on Azure virtual machine inside the code without azure login. In my earlier written articles, to retrieve secret password from Azure Key Vault I was first logging in to Azure using username password, but I can bypass the Azure login to get Key v…

Read more

Create a Virtual machine on Microsoft Azure

Although I have written PART 9: CREATING AND MANAGING VIRTUAL MACHINE (VM) USING MICROSOFT AZURE RESOURCE MANAGER PORTAL but it is the old article now, afterwords there are many updates came while creating an Azure Virtual Machine. New Azure VM updates are still easier to understand and configure, To create a VM There are multiple OS choices but the most used are Microsoft Winodws and Linux. You c…

Read more

Create an Azure App registrations in Azure Active Directory using PowerShell & AzureCLI

This is step by step guide to configure App Registration on Azure Active Directory (AzureAD). This guide includes three ways to create App Registration using Azure Portal, PowerShell and AzureCLI. 

Azure Portal

Within Azure AD portal you will find the App registrations pane that provide the capability to produce registrations for applications and assign permissions accordingly. Microsoft p…

Read more

Connect-AzureAD: One or more errors occurred. Could not load type 'System.Security.Cryptography.SHA256Cng'

While working on AzureAD (Azure Active Directory) with PowerShell module I was received below errors and my scripts where failing. I updated AzureAD module with Update-Module command to latest one but it was still throwing errors. After few testing I checked PowerShell version, it was latest PowerShell Core version 7.1.3 and found AzureAD module is not compatible with it.

Microsoft azuread import-module system.security.cryptography.sha256Cng connect-Azuread $psversiontable psversion assembly system.core publickeytoken error occurred .png

❯ Import-…

Read more

Use Key Vault secret identifier url to get the secret value using Powershell

While working on Azure Key Vault I had the requirment to extract the secret value from Azure key vault Secret Identifier ID. 

Working With Azure Key Vault Using Azure PowerShell and AzureCLI

You can find Secret Identifier by going to Azure Key vaults, select key vault >> Secrets Name >> Current Version. Url looks like {vaultBaseUrl}/secrets/{secret-name}/{secret-version}

Microsoft Azure key vaults secrets keys certificates access policies current version secret identifier set activation expiration date powershell azurecli.png

I am fo…

Read more

View older posts »

Page Views

5102672

Thanks a lot. I was trying to install Docker and was having that problem. I spend almost 3 hours looking arround. Thanks, your solution solved my problem. so simple but efficient

Hi,

I'm trying to troubleshoot this issue since a few days now and cannot seem to find the issue.

I have a lab environment in VMware Workstation with OPNsense firewall VM, Windows as a DNS Server VM, vCenter VM, and ESXi VM hosts added to vCenter. The vCenter and ESXi are in the same subnet, Windows Server is in a different subnet.

I have been trying to add vmnics to DVSwitch but keep getting Operation Timed Out error. Upon digging further I found the following error

A general system error occurred: Connection reset by peer: The connection is terminated by the remote end with a reset packet. Usually, this is a sign of a network problem, timeout, or service overload

which I read about on VMware [ https://kb.vmware.com/s/article/76259 ] says to be related to firewall. I can't seem to find what the issue is in firewall, all ports, protocols are open and allowing all traffic.

I have used Fortigate before and had not faced this issue, so I'm wondering if this is related to OPNsense, or it has to do with some misconfiguration on my part.

Any thoughts.

I cannot say thank you enough, as someone who's kryptonite is certificates, this article has been a revelation. From the bottom of my heart thank you sir!

You might want to mention the level of logs sent is debug or info and can't easily be changed. Face-palm to VMware for not including a level change on that config page. You need to SSH into the VCSA appliance and manually change a config file.

Thank you nice article below code help

add-type @"
using System.Net;
using System.Security.Cryptography.X509Certificates;
public class TrustAllCertsPolicy : ICertificatePolicy {
public bool CheckValidationResult(
ServicePoint srvPoint, X509Certificate certificate,
WebRequest request, int certificateProblem) {
return true;
}
}
"@
[System.Net.ServicePointManager]::CertificatePolicy = New-Object TrustAllCertsPolicy

Follow me on Blogarama