WilliamLam.com

  • About
    • About
    • Privacy
  • VMware Cloud
  • Tanzu
    • Application Modernization
    • Tanzu services
    • Tanzu Community Edition
    • Tanzu Kubernetes Grid
    • vSphere with Tanzu
  • Home Lab
  • Nested Virtualization
  • Apple
You are here: Home / VMware Cloud / Logging into vCenter when vCenter Cloud Gateway (VCGW) is disconnected from vSphere+ Cloud Service

Logging into vCenter when vCenter Cloud Gateway (VCGW) is disconnected from vSphere+ Cloud Service

02.22.2023 by William Lam // 2 Comments

As part of setting up access to the vSphere+ / vSAN+ Cloud Service, a vCenter Cloud Gateway (VCGW) is deployed into your on-premises infrastructure and serves as a gateway between your vCenter Server(s) and the VMware Cloud Console.

If the VCGW has connectivity issues to the VMware Cloud Console for whatever reason, your infrastructure and workloads continue to run but you will not be able to perform any operations through the VMware Cloud Console until connectivity is restored.

However, if you attempt to login into your on-premises vCenter Server(s) using the vSphere UI, you may be surprised to find the following error message.


The message may looking alarming at first about not being able to login, but can still login even if connectivity between the VCGW and VMware Cloud Console has been lost.

While I will agree the user experience may not very intuitive, the hint is in the URL link below where it says "Still having connection problems?"

If you click on the link, you will be taken to the following VMware KB 83798 which outlines the issue, troubleshooting steps and most importantly a workaround to access the vSphere Client in an "Offline" mode via the emergency URL which is simply https://[VCSA]/ui/emergency 

Before you can login, you will need to first request access for a vCenter Server user who has the vSphere Client->VMware Cloud offline login privilege, which by default, the administrator[at]vsphere[dot]local user will have and you can assign that to additional users if needed.


Once access has been granted to that user, you can then login to vSphere UI using the normal URL and provide your credentials to vCenter Server.


Once connectivity has been restored, this emergency URL is no longer needed and login to your vCenter Server(s) using the standard vSphere UI URL will work as before.

I also want to mention that the use of the emergency URL can also be audited like any other login to vCenter Server and a specific vCenter Event is emited called com.vmware.vsphere.client.security.LoginConnectivityCheckEvent, which can be seen in the Events tab as shown in the screenshot below.

More from my site

  • How to check if your vCenter Server is using vSphere+ / vSAN+ Subscription?
  • Automating subscription and usage retrieval for vSphere+ and vSAN+ Cloud Service
  • Quick Tip - Inventory core count for vSphere+, vSAN+ & VCF+ Cloud Service
  • Quick Tip - Avoid network conflicts with Docker Bridge Network on the vCenter Cloud Gateway for vSphere+/vSAN+
  • A first look at the new vSphere+ & vSAN+ Cloud Service

Categories // VMware Cloud, vSphere Tags // vCenter Cloud Gateway, VMware Cloud, vSphere

Comments

  1. Johannes says

    02/22/2023 at 9:42 am

    That *protected email* user is probably the administrator at vsphere dot local, right?

    Reply
    • William Lam says

      02/22/2023 at 9:48 am

      Yes. Sorry, my blog has plugin which hides anything that looks like an email 🙂

      SSO Administrator account has the role but you can also specify additional users if required

      Reply

Thanks for the comment! Cancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Search

Author

William Lam is a Senior Staff Solution Architect working in the VMware Cloud team within the Cloud Infrastructure Business Group (CIBG) at VMware. He focuses on Cloud Native technologies, Automation, Integration and Operation for the VMware Cloud based Software Defined Datacenters (SDDC)

Connect

  • Email
  • GitHub
  • LinkedIn
  • RSS
  • Twitter
  • Vimeo

Recent

  • How to enable passthrough for USB Network Adapters claimed by ESXi CDCE Driver? 03/30/2023
  • Self-Contained & Automated VMware Cloud Foundation (VCF) deployment using new VLC Holodeck Toolkit 03/29/2023
  • ESXi configstorecli enhancement in vSphere 8.0 Update 1 03/28/2023
  • ESXi on Intel NUC 13 Pro (Arena Canyon) 03/27/2023
  • Quick Tip - Enabling ESXi Coredumps to be stored on USB 03/26/2023

Advertisment

Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use.
To find out more, including how to control cookies, see here: Cookie Policy

Copyright WilliamLam.com © 2023

 

Loading Comments...