Latest reply on Aug 5, 2020 4:17 AM by NicolasAlauzet
we have a small cluster running esxi 6.5u1 and looking to upgrade this to 6.7u3, checking on the vmware interop matrix have come across the following KB referenced when going between these versions around a certificate store trust problem and upgrade failing.
Impact on ESXi upgrade to future ESXi releases of 2020 due to expired ESXi VIB Certificate. See https://kb.vmware.com/s/article/76555
We will be doing the upgrade using iso mounted to the hardware as its a very small cluster so no VUM setup and as its just 2 nodes doesn’t make sense to go through setting that up for such a small cluster.
My question is as we are doing from iso boot would this KB still apply as I think its more centred around VUM or updating from the CLI.
I have the same question (0)
I was reading the KB and it looks that that error can impact in the upgrade even using the iso and with other things as HA.
I would suggest you to do the workaround and update first to the build marked in red below. Then jump to 6.7. (At least that is what I would do)
In preparation for this expiry event, we recommend all customers upgrade their existing ESXi hosts to a minimum of the builds (listed below), which released after March 2018 and have the newer signing certificate in the trust store. Doing so prevents future installation and upgrades due to the signing certificate being untrusted.
- 6.0 ESXi600-201807001 (Build: 9239799) or later
- 6.5 U2 (Build: 8294253) or later
- 6.7 GA (Build: 8169922) or later.