HOW TO:  Fix Error code: ERR_CONNECTION_CLOSED when connecting to VMware vSphere Data Protection 5.x and 6.0.x using current versions of Internet Explorer, Chrome and Firefox

This article will show you in 6 easy steps how to fix this issue.

The majority of VMware vSphere Data Protection functions are performed via the vSphere Web Client connected to VMware vSphere vCenter Server. However on occasions, there are requirements to access the VDP appliance directly, here are some examples
 

1. VDP troubleshooting - e.g. checking VDP logs and creating checkpoints.
2. File level restore (FLR) - e.g. restoring files from individual virtual machine backups.
3. Emergency Restore e.g. if vCenter Server should fail, you need to access VDP directly to restore virtual machines.

Current versions of Internet Explorer, Chrome and Firefox have removed support for DSA ciphers, and DSA ciphers are used by VMware vSphere Data Protection 5.x and 6.0 to communicate with the web browser.

This is the web page received with an un-patched VDP 5.8 or 6.0.x, using Firefox. Firefox, removed DSA ciphers from release 37. This improved certificate and TLS communication security by removing support for DSA.

Source: https://www.mozilla.org/en-US/firefox/37.0/releasenotes/

This is the web page received with an un-patched VDP 5.8 or 6.0.x, using Google Chrome. Chrome removed DSA ciphers from release 40.0.2215.115m: ef2116d Remove DSA-based cipher suites and client auth.

Source: https://code.google.com/p/chromium/issues/detail?id=396787

VMware vSphere Data Protection (VDP) 5.x and 6.0.x are both affected with this issue. VMware vSphere Data Protection 6.1 is not affected by this issue, and has been fixed. See the VMware vSphere Data Protection (VDP) 6.0.1 Release Notes.

You could opt for completing an upgrade from VMware vSphere Data Protection 5.x and 6.0.x to VMware vSphere Data Protection 6.1, but I think you'll agree, that the following 6 steps are much quicker.

1. Download the HotFix from VMware

Using the browser of your choice download the Hotfix - 2111900_VDPHotfix.SHA2.sh.zip from http://kb.vmware.com/selfservice/viewAttachment.do?attachID=2111900_VDPHotfix.SHA2.sh.zip&documentID=2111900

2. Copy the HotFix to the VDP appliance via WinSCP

Using WinSCP, copy the Hotfix from your workstation to the VDP appliance, to the /tmp directory.

3. Connect via SSH (PuTTY) to the VDP Appliance.

SSH using PuTTY to the VDP appliance. You may need to use the admin account, and not the root username.

Change to the /tmp folder, by typing

cd /tmp

Select all Open in new window

4. Assume the root role.

If you have logged in remotely via SSH, you will need to "su" to root. Type

su root

Select all Open in new window

followed by the password at the command prompt. You will notice the prompt changes from a > to a #, when you are "rooted."

5. Unzip the HotFix

Check the hotfix file is present using

-ls -al 2111900_VDPHotfix.SHA2.sh.zip

Select all Open in new window

The zip file needs extracting using the unzip command, type

-ls -al 2111900_VDPHotfix.SHA2.sh.zip

Select all Open in new window

Then change directory to the folder 2111900_VDPHotfix.SHA2.sh, by typing

-cd 2111900_VDPHotfix.SHA2.s

Select all Open in new window

6. Change permissions and execute the HotFix script

Type

chmod a+x VDPHotfix_SHA2.sh

Select all Open in new window

to change permissions on the Hotfix script, so it can be executed and run to patch the server.

Type

./VDPHotfix_SHA2.sh

Select all Open in new window

to execute and patch the server. select y(es) to continue and patch the server. The VDP appliance will be patched and fixed.

The Hotfix has been applied successfully. Check by going to the VDP URL:

https://:8543/vdp-configure

Select all Open in new window

and the following web page should display
Congratulations; you have successfully patched and fixed your VMware vSphere Data Protection 5.x and 6.0.x appliance for use with current versions of Internet Explorer, Chrome and Firefox.