Skip to main content
Start a Conversation

Unsolved

This post is more than 5 years old

D

Dajinn

29 Posts

3111

April 11th, 2016 12:00

Error "Secured communication is disabled on MDM" during Configure phase.

Hi all,

trying to install ScaleIO using the installation gateway on 6 servers, all running fresh installs of Server 2012 R2. I followed the pre-install guidelines, installed Java and Python on the 3 MDM nodes, however, when I get to the configure phase I get an error on the "approve MDM certificate" on the 3 nodes that are MDM.

Most of the settings are via the installation wizard, I am not using a config file yet as I want to look around the GUI first before making changes or setting things.

The error is

  • Secured communication is disabled on MDM. Refer to the installation guide.

I've googled and haven't come across this anywhere on the EMC community network.

I added port allowances to the firewalls of each server, and then I just turned the firewalls completely off to see if that was the issue. No go. All nodes are able to ping each other just fine, and services are running on each of them(at least the services that have been installed). WMI is also running just fine.

Any ideas?

Full error is below:

2016-04-11 15:09:10,101 [executor-53] WARN  c.e.s.s.i.s.i.c.WMINodeConnection - Invalid component received from WMI 172.31.255.6 - Gateway

2016-04-11 15:09:20,824 [http-nio-443-exec-8] INFO  c.e.s.s.w.c.i.ProcessPhaseController - ==== Install Process ended ====

2016-04-11 15:09:20,889 [executor-54] INFO  c.e.e.c.service.CommandService - getAndApproveNodeCertificate called on 172.31.255.2

2016-04-11 15:09:20,967 [executor-54] ERROR c.e.e.c.service.CommandService - Failed retrieving certificate of 172.31.255.2

com.emc.ecs.net.exceptions.SecureConnectionDisabledException: null

  at com.emc.ecs.net.LayeredProtocolConnection.openSocket(LayeredProtocolConnection.java:606) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.open(LayeredProtocolConnection.java:416) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.getHostUntrustedCertificate(LayeredProtocolConnection.java:846) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.getHostCertificate(LayeredProtocolConnection.java:833) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.im.services.installation.configurators.CommandServiceMdmConnection.getAndApproveNodeCertificate(CommandServiceMdmConnection.java:4438) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:27) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:18) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.MdmCommand.executeCommand(MdmCommand.java:91) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.BaseCommand.call(BaseCommand.java:323) [ams-1.0-SNAPSHOT.jar:na]

  at java.util.concurrent.FutureTask.run(Unknown Source) [na:1.8.0_77]

  at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source) [na:1.8.0_77]

  at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source) [na:1.8.0_77]

  at java.lang.Thread.run(Unknown Source) [na:1.8.0_77]

2016-04-11 15:09:20,967 [executor-54] ERROR c.e.e.c.service.CommandService - Failed to get MDM certificate from all ips: [172.31.255.2]

com.emc.ecs.net.exceptions.SecureConnectionDisabledException: null

  at com.emc.ecs.net.LayeredProtocolConnection.openSocket(LayeredProtocolConnection.java:606) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.open(LayeredProtocolConnection.java:416) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.getHostUntrustedCertificate(LayeredProtocolConnection.java:846) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.getHostCertificate(LayeredProtocolConnection.java:833) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.im.services.installation.configurators.CommandServiceMdmConnection.getAndApproveNodeCertificate(CommandServiceMdmConnection.java:4438) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:27) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:18) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.MdmCommand.executeCommand(MdmCommand.java:91) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.BaseCommand.call(BaseCommand.java:323) [ams-1.0-SNAPSHOT.jar:na]

  at java.util.concurrent.FutureTask.run(Unknown Source) [na:1.8.0_77]

  at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source) [na:1.8.0_77]

  at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source) [na:1.8.0_77]

  at java.lang.Thread.run(Unknown Source) [na:1.8.0_77]

2016-04-11 15:09:20,967 [executor-54] ERROR c.e.s.s.d.i.c.ApproveMdmCertificateCommand - Error Secured communication is disabled on MDM. Refer to the installation guide. executing command .ApproveMdmCertificateCommand (abort) : com.emc.s3g.scaleio.im.services.installation.configurators.CommandServiceMdmConnection.getAndApproveNodeCertificate(CommandServiceMdmConnection.java:4489)

com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:27)

com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:18)

com.emc.s3g.scaleio.domain.installation.commands.MdmCommand.executeCommand(MdmCommand.java:91)

com.emc.s3g.scaleio.domain.installation.commands.BaseCommand.call(BaseCommand.java:323)

java.util.concurrent.FutureTask.run(Unknown Source)

java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)

java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)

java.lang.Thread.run(Unknown Source)

2016-04-11 15:09:21,373 [executor-55] INFO  c.e.e.c.service.CommandService - getAndApproveNodeCertificate called on 172.31.255.6

2016-04-11 15:09:21,373 [executor-55] ERROR c.e.e.c.service.CommandService - Failed retrieving certificate of 172.31.255.6

com.emc.ecs.net.exceptions.SecureConnectionDisabledException: null

  at com.emc.ecs.net.LayeredProtocolConnection.openSocket(LayeredProtocolConnection.java:606) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.open(LayeredProtocolConnection.java:416) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.getHostUntrustedCertificate(LayeredProtocolConnection.java:846) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.getHostCertificate(LayeredProtocolConnection.java:833) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.im.services.installation.configurators.CommandServiceMdmConnection.getAndApproveNodeCertificate(CommandServiceMdmConnection.java:4438) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:27) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:18) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.MdmCommand.executeCommand(MdmCommand.java:91) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.BaseCommand.call(BaseCommand.java:323) [ams-1.0-SNAPSHOT.jar:na]

  at java.util.concurrent.FutureTask.run(Unknown Source) [na:1.8.0_77]

  at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source) [na:1.8.0_77]

  at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source) [na:1.8.0_77]

  at java.lang.Thread.run(Unknown Source) [na:1.8.0_77]

2016-04-11 15:09:21,373 [executor-55] ERROR c.e.e.c.service.CommandService - Failed to get MDM certificate from all ips: [172.31.255.6]

com.emc.ecs.net.exceptions.SecureConnectionDisabledException: null

  at com.emc.ecs.net.LayeredProtocolConnection.openSocket(LayeredProtocolConnection.java:606) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.open(LayeredProtocolConnection.java:416) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.getHostUntrustedCertificate(LayeredProtocolConnection.java:846) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.ecs.net.LayeredProtocolConnection.getHostCertificate(LayeredProtocolConnection.java:833) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.im.services.installation.configurators.CommandServiceMdmConnection.getAndApproveNodeCertificate(CommandServiceMdmConnection.java:4438) ~[ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:27) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:18) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.MdmCommand.executeCommand(MdmCommand.java:91) [ams-1.0-SNAPSHOT.jar:na]

  at com.emc.s3g.scaleio.domain.installation.commands.BaseCommand.call(BaseCommand.java:323) [ams-1.0-SNAPSHOT.jar:na]

  at java.util.concurrent.FutureTask.run(Unknown Source) [na:1.8.0_77]

  at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source) [na:1.8.0_77]

  at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source) [na:1.8.0_77]

  at java.lang.Thread.run(Unknown Source) [na:1.8.0_77]

2016-04-11 15:09:21,373 [executor-55] ERROR c.e.s.s.d.i.c.ApproveMdmCertificateCommand - Error Secured communication is disabled on MDM. Refer to the installation guide. executing command .ApproveMdmCertificateCommand (abort) : com.emc.s3g.scaleio.im.services.installation.configurators.CommandServiceMdmConnection.getAndApproveNodeCertificate(CommandServiceMdmConnection.java:4489)

com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:27)

com.emc.s3g.scaleio.domain.installation.commands.ApproveMdmCertificateCommand.executeMdmCommand(ApproveMdmCertificateCommand.java:18)

com.emc.s3g.scaleio.domain.installation.commands.MdmCommand.executeCommand(MdmCommand.java:91)

com.emc.s3g.scaleio.domain.installation.commands.BaseCommand.call(BaseCommand.java:323)

java.util.concurrent.FutureTask.run(Unknown Source)

java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)

java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)

java.lang.Thread.run(Unknown Source)

Dajinn

29 Posts

April 11th, 2016 13:00

Hi David,

The installer I used on all of the servers was "jre-8u77-windows-x64".

I used the Python installer located in the downloaded directory of the ScaleIO Windows package. The python installer included with the ScaleIO folder does not give any distinction of architecture as it's only called "PythonModulesInstall".

I added the Python27 directory to the PATH environment variable in Windows for all the servers, didn't seem to help.

One thing I was curious about, when I open the gateway  installer in a browser I get the "https://" strikethrough with a certificate error, "There is a problem with this website's security certificate" and I just click "Continue to this website (not recommended)". I've seen this before of course when using things like Dell iDRAC without an SSL cert installed, just wondering if it was the culprit.

Thanks,

Chris    

dfelt1

34 Posts

April 11th, 2016 13:00

Hello Dajinn,

While you do state that you installed Java and Python, thank you for the clarity, you do not state if you installed the 64 bit versions. Please double check as by default Java will install the 32 bit version and you need 64 bit installed to proceed.

Please let me know what you find so we can continue to help you successfully install ScaleIO.

Thank you,

David

Dajinn

29 Posts

April 12th, 2016 07:00

So it looks like I got it going.

I think that I was reading mostly 1.32 documents and leaned too heavily on the 'hope' that it was similar enough. I had spoken to someone who uses ScaleIO and it turns out I wasn't aware of the use_nonsecure_communication flag that you can specify when installing via the SCLI because the 2.0 gateway uses encryption.

The gateway installer(which I was using) I don't think shows more advanced options if you don't upload a CSV file, at least I didn't see anything.


What I noticed is that once I finally found the 2.0 documents (the 1.32 quick start guide is on the 2.0 download page and the 1.32 docs come up at the top of a google search) it said you needed OpenSSL64 bit. I'm assuming the necessity is if you use secure communication for the self signing certs.


So once I loaded that one, I was able to get everything going. Hope this helps someone else down the road!

Girjesh

5 Posts

May 20th, 2016 01:00

hello all,

facing the same error a while ago,

installed OpenSSL from "https://slproweb.com/products/Win32OpenSSL.html" and now everything is working.

View More

View All

No Events found!

Top