WilliamLam.com

  • About
    • About
    • Privacy
  • VMware Cloud Foundation
  • VKS
  • Homelab
    • Resources
    • Nested Virtualization
  • VMware Nostalgia
  • Apple
You are here: Home / VMware Cloud / Logging into vCenter when vCenter Cloud Gateway (VCGW) is disconnected from vSphere+ Cloud Service

Logging into vCenter when vCenter Cloud Gateway (VCGW) is disconnected from vSphere+ Cloud Service

02.22.2023 by William Lam // 2 Comments

As part of setting up access to the vSphere+ / vSAN+ Cloud Service, a vCenter Cloud Gateway (VCGW) is deployed into your on-premises infrastructure and serves as a gateway between your vCenter Server(s) and the VMware Cloud Console.

If the VCGW has connectivity issues to the VMware Cloud Console for whatever reason, your infrastructure and workloads continue to run but you will not be able to perform any operations through the VMware Cloud Console until connectivity is restored.

UPDATE (06/21/23) - The period in which VMware declares a VCGW unreachable has been updated from 24hrs to 7 days. This means even if your VCGW loses connectivity, you will still be able to login to your on-premises vCenter Server and/or SDDC Manager without needing to go to emergency URL.

However, if you attempt to login into your on-premises vCenter Server(s) using the vSphere UI, you may be surprised to find the following error message.


The message may looking alarming at first about not being able to login, but can still login even if connectivity between the VCGW and VMware Cloud Console has been lost.

While I will agree the user experience may not very intuitive, the hint is in the URL link below where it says "Still having connection problems?"

If you click on the link, you will be taken to the following VMware KB 83798 which outlines the issue, troubleshooting steps and most importantly a workaround to access the vSphere Client in an "Offline" mode via the emergency URL which is simply https://[VCSA]/ui/emergency 

Before you can login, you will need to first request access for a vCenter Server user who has the vSphere Client->VMware Cloud offline login privilege, which by default, the administrator[at]vsphere[dot]local user will have and you can assign that to additional users if needed.


Once access has been granted to that user, you can then login to vSphere UI using the normal URL and provide your credentials to vCenter Server.


Once connectivity has been restored, this emergency URL is no longer needed and login to your vCenter Server(s) using the standard vSphere UI URL will work as before.

I also want to mention that the use of the emergency URL can also be audited like any other login to vCenter Server and a specific vCenter Event is emited called com.vmware.vsphere.client.security.LoginConnectivityCheckEvent, which can be seen in the Events tab as shown in the screenshot below.

More from my site

  • Finding vCenter Cloud Gateway Deployments in your environment
  • VMware Cloud (VMC) Console Inventory with various vSphere "Linked Modes"
  • Frequently asked scenarios about Subscription & Entitlement for vSphere+, vSAN+ and VCF+
  • Frequently asked scenarios about Global Inventory for vSphere+, vSAN+ and VCF+
  • Frequently asked scenarios about Cloud Consumption Interface (CCI) for vSphere+, vSAN+ and VCF+

Categories // VMware Cloud, vSphere Tags // vCenter Cloud Gateway, VMware Cloud, vSphere

Comments

  1. *protectedJohannes says

    02/22/2023 at 9:42 am

    That *protected email* user is probably the administrator at vsphere dot local, right?

    Reply
    • William Lam says

      02/22/2023 at 9:48 am

      Yes. Sorry, my blog has plugin which hides anything that looks like an email 🙂

      SSO Administrator account has the role but you can also specify additional users if required

      Reply

Thanks for the comment!Cancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Search

Thank Author

Author

William is Distinguished Platform Engineering Architect in the VMware Cloud Foundation (VCF) Division at Broadcom. His primary focus is helping customers and partners build, run and operate a modern Private Cloud using the VMware Cloud Foundation (VCF) platform.

Connect

  • Bluesky
  • Email
  • GitHub
  • LinkedIn
  • Mastodon
  • Reddit
  • RSS
  • Twitter
  • Vimeo

Recent

  • Programmatically accessing the Broadcom Compatibility Guide (BCG) 05/06/2025
  • Quick Tip - Validating Broadcom Download Token  05/01/2025
  • Supported chipsets for the USB Network Native Driver for ESXi Fling 04/23/2025
  • vCenter Identity Federation with Authelia 04/16/2025
  • vCenter Server Identity Federation with Kanidm 04/10/2025

Advertisment

Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use.
To find out more, including how to control cookies, see here: Cookie Policy

Copyright WilliamLam.com © 2025

 

Loading Comments...