VxRail: How to collect ESXi logs when the vSAN is encrypted.

Summary: VxRail cannot collect the ESXi log bundle when vSAN encryption is enabled.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Instructions

If Encryption is enabled on VSAN or Host Encryption Mode is enabled, VxRail Manager cannot collect the ESXi log bundle. This is working as designed.

It is recommended to use the vCenter UI to collect the ESXi log bundle.

Use the VMware article for reference: Collecting diagnostic information for ESXi hosts and vCenter Server using the vSphere ClientThis hyperlink is taking you to a website outside of Dell Technologies.

 

Additional Information

hostd.log:

2022-08-10T21:42:59.689Z warning hostd[3921544] [Originator@6876 sub=HostSvc.DiagnosticManager opID=9a4c981-c6-c339 user=vpxuser:VSPHERE.LOCAL\vxrmgmt] 2022-08-10 21:42:59,655 WARNING main.py:583 Command cannot succeed because this host is in crypto safe mode and the vm-support incident key is missing.
--> To collect useful coredumps, perform these tasks:
--> 1. Generate a vm-support incident key by running:
--> crypto-util keys vm-support --password prolog
--> 2. Run vm-support:
--> vm-support [options]
--> 3. Perform cleanup:
--> crypto-util keys vm-support epilog
 

Affected Products

VxRail, VxRail Software
Article Properties
Article Number: 000202507
Article Type: How To
Last Modified: 27 يونيو 2025
Version:  5
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.