Nutanix hypervisor The host server cannot be contacted - "Could not create SSL/TLS secure channel"

book

Article ID: CTX463890

calendar_today

Updated On:

Description

The hosting connection to the Nutanix hypervisor is failing.
Trying to update the hosting connection, create a new hosting connection or change the machine catalogs fails with an error :

Inner Exception:
Citrix.Orchestration.Base.LogicModels.Exceptions.HypervisorNotContactableException
The host server cannot be contacted.
Check that the connection has a valid host address, and that the host server is powered on and working properly.
Request Url = https://x.x.x.x:9440/PrismGateway/services/rest/v1/cluster/
Request Body = , Request status : SecureChannelFailure, Http Status :0, Response : , Exception :System.Net.WebException:
The request was aborted: Could not create SSL/TLS secure channel.

Resolution

Ensure the below Cipher suites are configured on the Cloud connectors to communicate securely between Citrix Cloud and Nutanix hypervisor.

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (secp256r1) or
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (secp256r1)

These ciphers are not available on the Windows Server 2012r2 server. If you have Citrix cloud connectors on Server 2012 R2, deploy new cloud connectors with at least a 2016 or higher operating system.

Problem Cause

Windows Server 2012R2 doesn't support the required cryptographic ciphers to establish a secure connection with Nutanix.

Was this article helpful?

thumb_up Yes

thumb_down No

Welcome to "KB Articles"