Hey Rohit I was installing a fresh enviroment. Added the host through command cloudstack-setup-agent, here it mentions everything done correctly but the host doesn't get added. (KVM host)
Agent log file gives: 2018-04-03 09:12:14,584 INFO [cloud.agent.Agent] (main:null) (logid:) Connecting to host:localhost 2018-04-03 09:12:14,584 INFO [utils.nio.NioClient] (main:null) (logid:) Connecting to localhost:8250 2018-04-03 09:12:14,585 INFO [utils.nio.Link] (main:null) (logid:) Conf file found: /etc/cloudstack/agent/agent.properties 2018-04-03 09:12:14,585 WARN [utils.nio.Link] (main:null) (logid:) Failed to load keystore, using trust all manager 2018-04-03 09:12:14,589 ERROR [utils.nio.Link] (main:null) (logid:) SSL error caught during unwrap data: Unrecognized SSL message, plaintext connection?, for local address=/127.0.0.1:39863, remote address=localhost/127.0.0.1:8250. The client may have invalid ca-certificates. 2018-04-03 09:12:14,589 ERROR [utils.nio.NioClient] (main:null) (logid:) SSL Handshake failed while connecting to host: localhost port: 8250 2018-04-03 09:12:14,589 ERROR [utils.nio.NioConnection] (main:null) (logid:) Unable to initialize the threads. java.io.IOException: SSL Handshake failed while connecting to host: localhost port: 8250 at com.cloud.utils.nio.NioClient.init(NioClient.java:67) at com.cloud.utils.nio.NioConnection.start(NioConnection.java:95) at com.cloud.agent.Agent.start(Agent.java:263) at com.cloud.agent.AgentShell.launchAgent(AgentShell.java:410) at com.cloud.agent.AgentShell.launchAgentFromClassInfo(AgentShell.java:378) at com.cloud.agent.AgentShell.launchAgent(AgentShell.java:362) at com.cloud.agent.AgentShell.start(AgentShell.java:467) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:498) at org.apache.commons.daemon.support.DaemonLoader.start(DaemonLoader.java:243) 2018-04-03 09:12:14,590 INFO [utils.exception.CSExceptionErrorCode] (main:null) (logid:) Could not find exception: com.cloud.utils.exception.NioConnectionException in error code list for exceptions 2018-04-03 09:12:14,590 WARN [cloud.agent.Agent] (main:null) (logid:) NIO Connection Exception com.cloud.utils.exception.NioConnectionException: SSL Handshake failed while connecting to host: localhost port: 8250 2018-04-03 09:12:14,590 INFO [cloud.agent.Agent] (main:null) (logid:) Attempted to connect to the server, but received an unexpected exception, trying again... While connecting through UI it gives authentication error. I also set ssh and sshd ports to 8250 and was able to ssh into management from host through it but still getting the same error while adding it in cloudstack. Management generates a key(.pem) file in the UI, do we need to add that file in the host settings for connection? Also my ca.plugin.root.auth.strictness settings was set to true. On setting it to false gives the same. Regards Swastik On 4/2/18, Rohit Yadav <rohit.ya...@shapeblue.com> wrote: > Swastik, > > Did you try to upgrade the env or installed a fresh env? How did you add the > host? Was it a kvm host or something else? Instead of localhost, can you use > an IP for the mgmt server? Also check and share your ca auth strictness > global setting. Setting that to false will enforce legacy behavior. > > Regards. > > Get Outlook for Android<https://aka.ms/ghei36> > > > > From: Swastik Mittal > Sent: Monday, 2 April, 4:58 PM > Subject: SSL authentication failure > To: users@cloudstack.apache.org > > > Hey, I was using cloudstack version 4.6 earlier and was able to > configure/add host to my datacenter. On installing version 4.11 on setting > up host, host is unable to connect to management on port 8250 because > management immediately closes the connection and does not allow connection > on that port. (Getting this error in agent log) The management server log > gives, SSL error caught during wrap data: null cert chain, for local > address=/127.0.0.1:8250, remote address=/127.0.0.1:46029. I was also not > able to ssh into management on port 8250 even though setting SSHD to all in > hosts.allow. I also tried allowing policies on port 8250 through ufw command > but it din't work. How do I update policies in 4.11? Any help? Reagrds > Swastik > > > rohit.ya...@shapeblue.com > www.shapeblue.com > 53 Chandos Place, Covent Garden, London WC2N 4HSUK > @shapeblue > > > >