Earlier this month I posted how on how to fix the weak ephemeral Diffie-Hellman key issue in VMware vRealize Orchestrator 6.0.2 appliance. Another issue I’ve ran into is how to unlock vRealize Orchestrator default account. It seems you can lock the account after to many failed attempts but once locked the account does not seem to unlock… or at least for me after waiting more than a couple hours.
Luckily unlocking the vRealize Orchestrator default account is pretty straight forward.
I’ve recently deployed the vRealize Orchestrator appliance (6.0.2) and noticed right away that my default browser Firefox, would not load the Orchestrator appliance web panel. Firefox always complained about a weak Diffie-Hellman key.
“An error occurred during a connection to ip-address:8281. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key)”
At the time I simply ignored it and just tried Google Chrome which it worked fine. That was until the latest release also broke with the same type of error message:
“Server has a weak ephemeral Diffie-Hellman public key“.
I now had a problem and contacted VMware support, below is the very easy fix to make vCO 6 work in both the latest version of Firefox and Chrome!