Dear forum users
I have a very simple problem and obviously you can provide a simple solution.
ESXi Hypervisors – 5.0 SU3
Prime Collaboration Assurance - 10.5.1.0.53684
I have 7 ESXi Hypervisors running 5.0SU3. They have SNMP communities configured for integration into PCA. The customer asked us to update the SNMP communities on the Hypervisors after a security audit.
This has been completed successfully but the PCA device work centre is still using the old community despite the fact I must have changed it over 100 times. I know this because if I put the old community back on the Hypervisor and verify the device from Device Work Centre, it passes.
I have deleted the Profile and re-added it with the new SNMP community. I have created a new profile and tried to discover the Hypervisors with this profile. I have re-booted the whole Prime appliance.
Does anyone have any ideas, this should be the simplest thing and it is driving me crazy.
I was just looking for the bugs. I am not confident whether the below bug is associated/helpful for your problem of CPA.
If it is not that critical, let us see if somebody replies else open TAC case.
I did some fault finding with the TAC. It would seem from Wireshark analysis that PCA was only using the SNMP RO string and not the RW. The ESXi hosts were only configured for the RW community thus they were not responding to the PCA SNMP requests. I changed PCA RO string to also be the RW and now the devices are managed.
It is strange because we had it working before. The TAC case manager has asked the question of the developers why PCA is only using RO and not RW.
thanks for updates[+5]
Can u explain more in detail what u had configured earlier and what is working now for SNMP in PCA?
OK, so PCA was configured for two SNMP strings the device work centre, manage credentials. One string was for RO, the other for RW. The customer asked me to change the RW string only following a security audit. After I changed it on the Hypervisors and PCA, they could not be managed because the SNMP credentials were incorrect. After analysis of Wireshark, it would seem that PCA is only using the RO string for management and not the RW. This is strange for two reasons:-
Does that make sense?
I am not quite sure it will make you feel any better, but I just tryied that scenario in my lab with same release of PCA and it works OK. Only difference is I am not using ESXi update 3 but update 1 instead. If you send me an email to email@example.com I can send you the screenshots of that test. Thanks. /Phil