I'm evaluating vDP and have got the following trouble. After I changed SSL certificate at vCenter server, vDP jobs are failing permanently.
In the log I can see that vDP is trying to connect to the hypervisor where the VM is located. During connect disk mount fails with the error "unable to get local issuer certificate".
I can see that vDP is trying to connect to the port 902. I tried to verify that the certificate is correct using the following command:
echo -n | openssl s_client -connect $SERVERNAME:$PORTNUMBER | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > /tmp/$SERVERNAME.cert
I found that at port 443 certificate is correct, but at port 902 I get the following error:
140735160738656:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:s23_clnt.c:795:
$SERVERNAME here is a FDQN of the hypervisor.
I guess that means that port 902 is not protected with SSL. How can I fix that?
Update:
$ echo -n | openssl s_client -connect $SERVERNAME:902
CONNECTED(00000003)
140735160738656:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:s23_clnt.c:795:
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 308 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
---