Home > Blogs > VMware Support Insider > Author Archives: Rick Blythe
Rick Blythe

About Rick Blythe

Social Media Program Manager for VMware, Rick Blythe manages the Twitter handle @vmwarekb and curates the Support Insider Blog.

PCoIP issues with Horizon View Desktops

There are various reasons a user might experience a blank (black) screen when using the PCoIP protocol with Horizon View and our Support Engineers get calls on this every day. These include, but are not limited to:

  • Misconfiguration of connection server settings.
  • vRAM shortage on the View virtual machine.
  • Incorrect video driver version installed on the View virtual machine.

Note: Troubleshoot your PCoIP issues in the proper order

It is important that the steps outlined in KB article:
Troubleshooting a black screen when logging into a Horizon View virtual desktop using PCoIP (1028332) be followed in the order provided in order to quickly isolate and identify the proper resolution. They are also ordered in the most appropriate sequence to minimize data loss. The KB walks you through a serious of checks, verifying that various requirements are met and that your systems are configured properly. You will see many articles referenced as you work through each step. Do not skip steps. A slow, methodical approach works best here.

If you still see a problem after reading through the body of the KB article, there are also a number of related articles listed in the ‘See Also’ section. If you want to be notified when this article is updated there is an rss link you can subscribe to.

Announcement!

Many of you who read this blog also follow our social media accounts @vmwarekb, @vmwarecares, Facebook, and others. When we set out to engage with our customers online we wanted to be both proactive and reactive about it — that is, we would push out content like newly published KB articles, and we would answer customer questions. This has worked really well for us over the years and we thank all of you for helping making the ecosystem richer and a better place to work.

On the flip side, the number of channels tended to grow as new social networks came online. And grow. Eventually, what we ended up doing is confusing our customers as to which channel was for what purpose? We’re fixing that.

To stop this channel creep, over the next few weeks we will be consolidating some channels as follows:

Twitter:

Change: @vmwarekb is being retired. @vmwarecares will be the single voice going forward. We’re going to do this by renaming the vmwarekb account (as it has far more followers) to vmwarecares.

Action: If you currently follow vmwarekb you don’t need to do anything. You will still be subscribed to us, but the name will now be vmwarecares. If you follow vmwarecares currently you will need to re-follow us.

Facebook:

Change: VMware Knowledge Base is being retired and will go dormant. VMware Cares will be the single page going forward.

Action: Please ‘Like’ our VMware Cares.

By consolidating channels we hope to simplify and clarify the contact options to serve you better.

ALERT: Bash Code Injection Vulnerability aka Shellshock

VMware Support AlertOn Sept 24, 2014, a critical vulnerability in Bash (CVE-2014-6271, CVE-2014-7169) was published that may allow for remote code execution. The VMware Security Engineering, Communications, and Response group (vSECR) has been actively investigating the impact this vulnerability may have on our products.

For further information and updates on this vulnerability, refer to KB article:
VMware assessment of Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271 CVE-2014-7169, aka “Shellshock”) (2090740)
.

Note: For information regarding VMware customer portals and web sites, see Impact of bash code injection vulnerability on VMware Customer Portals and web sites (CVE-2014-6271 and CVE-2014-7169, aka “shellshock”) (2090817).

Generating and Troubleshooting SSL certificates in View

VMware View SecurityNext up in our series of VMware View topics, we’re going to talk about security. I spoke with a couple of our top support engineers about View security and they identified three Knowledgebase articles that solve more support requests than any others in the area of security, namely SSL certificates.  They recommend customers use:

In View 5.1 and later, you configure certificates for View by importing the certificates into the Windows local computer certificate store on the View server host. By default, clients are presented with this certificate when they visit a secure page such as View Administrator. You can use the default certificate for lab environments, and one could even make the argument that it is OK for fire-walled environments, but otherwise you should replace it with your own certificate from a trusted CA (Verisign, GoDaddy, others) as soon as possible. They also told me you should use an SSL certificate from a trusted CA when setting up a Security Server for your environment when the Security Server can be used from outside your firewall (Internet) to access View desktops inside your firewall.

My engineers stressed to me the importance of following each step in these KBs one at a time when you are filling out the forms on those sites to obtain your certificate. It is easy to make a mistake and you might not receive something that will work for you.

Note: The default certificate is not signed by a commercial Certificate Authority (CA). Use of noncertified certificates can allow untrusted parties to intercept traffic by masquerading as your server.

 

When Linked Clones Go Stale

One of the biggest call drivers within our VMware View support centers revolves around linked clone pools. Some of your users may be calling you to report that their desktop is not available. You begin to check your vCenter and View Administrator portal and discover some of the following symptoms:

  • You cannot provision or recompose a linked clone desktop pool
  • You see the error:
    Desktop Composer Fault: Virtual Machine with Input Specification already exists
  • Provisioning a linked clone desktop pool fails with the error:
    Virtual machine with Input Specification already exists
  • The Connection Server shows that linked clone virtual machines are stuck in a deleting state
  • You cannot delete a pool from the View Administrator page
  • You are unable to delete linked clone virtual machines
  • When viewing a pools Inventory tab, the status of one or more virtual machines may be shown as missing

There are a number of reasons this might happen, and KB: 2015112 Manually deleting linked clones or stale virtual desktop entries from the View Composer database in VMware View Manager and Horizon View covers resolving this topic comprehensively, but let’s discuss a bit of the background around these issues.

When a linked clone pool is created or modified, several backend databases are updated with configuration data. First there is the SQL database supporting vCenter Server, next there is the View Composer database, and thirdly the ADAM database. Let’s also throw in Active Directory for good measure. With all of these pieces each playing a vital role in the environment, it becomes apparent that should things go wrong, there may be an inconsistency created between these databases. These inconsistencies can present themselves with the above symptoms.

Recently a new Fling was created to address these inconsistencies. If you’re not acquainted with Flings, they’re tools our engineers build to help you explore and manipulate your systems. However, it’s important to remember they come with a disclaimer:

“I have read and agree to the Technical Preview Agreement. I also understand that Flings are experimental and should not be run on production systems.”

If you’re just in your lab environment though, they are an excellent way to learn and understand the workings of your systems at a deeper level. Here is the Fling: ViewDbChk. For production systems we recommend following the tried and true procedures documented in KB 2015112. The KB includes embedded videos to help walk you through the steps.

VMware View – Top 20 KB Articles

announcement Hey there VMware View implementers, here’s a top 20 VMware View specific KBs list to help you avoid issues that many of you have reported. This list is hand picked by our View Support Engineers. Keep this list handy.

  1. VMware Horizon View trending issues by product version (2089340)
  2. Manually deleting linked clones or stale virtual desktop entries from the View Composer database in VMware View Manager and Horizon View (2015112)
  3. Troubleshooting SSL certificate issues in VMware Horizon View 5.1 and later (2082408)
  4. Troubleshooting VMware Horizon View HTML Access (2046427)
  5. Troubleshooting a black screen when logging into a Horizon View virtual desktop using PCoIP (1028332)
  6. Pool settings are not saved, new pools cannot be created, and vCenter Server tasks are not processed in a Horizon View environment (2082413)
  7. VMware View Composer installation best practices and troubleshooting (2083555)
  8. Moving a persistent data disk to another View desktop (1033286)
  9. Configuring VMware View Event database on an SQL server fails with the error: An error occurred while attempting to configure the database (1029537)
  10. Enabling RSA SecurID authentication on a View Connection Server fails when there are multiple network interfaces on the Connection Server (2043055)
  11. Manually deleting replica virtual machines in VMware Horizon View 5.x (1008704)
  12. Troubleshooting Horizon View user permission issues with vCenter Server (2085142)
  13. Troubleshooting Persona Management (2008457)
  14. Investigating VMware View Composer failure codes (2085204)
  15. Generating and importing a signed SSL certificate into VMware Horizon View 5.1/5.2/5.3 using Microsoft Certreq (2032400)
  16. Managing persistent disks in VMware Horizon View 4.6 and later (2086416)
  17. Troubleshooting Agent Unreachable status in VMware Horizon View (2083535)
  18. Performing maintenance or Composer operations on the VMware Horizon View desktops fail (2086530)
  19. Connections to the Horizon View Connection Server or Security Server fail with SSL errors (2072459)
  20. Performing maintenance or Composer operations on the VMware Horizon View desktops fail (2086530)

Come see us at VMworld!

Once again this year, the folks behind Knowledge Experience are coming to VMworld to showcase all the new things we’ve been up to since last year. I am sure you are asking why it is called Knowledge Experience – we have a new mission and vision and that is to provide contextual content to the customer to ensure they can solve their issue before they need to create a service request – we are looking for your insights and feedback on how you would like to see this.

Some of you will remember the great vSphere networking posters we were handing out last year. We’re happy to announce we have another one – this time for VMware View. All the interconnecting ports/protocols… these look great on the wall! To get yours, come say hello to Rick Blythe at the VMware Communities Info Desk in the Hang Space during these times:

  • Monday: 11am – 2pm
  • Tuesday: 11am – 2pm
  • Wednesday: 1pm – 4pm

That’s not all — in the Solutions Exchange Sharon, Robyn, and Rick have two demos for you:

  1. New My VMware Web Portal prototype
  2. New My VMware iPhone App prototype

We’re really pumped to hear what you have to say about how we can provide you more contextual content to help you solve problems before creating a support request and therefore reducing your time and effort so that you can get back to your day jobs – We’ll be right next to the My VMware pod.  Our pod is titled:

Using Knowledge to Get Answers Quickly

  • Leverage online self-help support
  • Prevent or resolve problems quickly
  • Provide input to new concierge model

We hope you drop by; we’d love to hear what you think!

See you there!

ALERT: Storage Controllers for Virtual SAN that are no longer supported

VMware Support AlertAs part of VMware’s ongoing testing and certification efforts on Virtual SAN compatible hardware, VMware has decided to remove some controllers from the Virtual SAN compatibility list. While fully functional, these controllers offer IO throughput that is too low to sustain the performance requirements of most VMware environments.

For more information, see KB article: Storage Controllers previously supported for Virtual SAN that are no longer supported (2081431). If you have purchased Virtual SAN for use with these controllers, contact VMware Customer Service for next steps.

Note: Any updates to this issue will be reflected in the aforementioned KB article. To be alerted when this article is updated, click Subscribe to Document in the Actions box on the KB article page.

Popular tweets

Here’s an interesting top 20 list. In the last 30 days, these were the tweets form our @vmwarekb account that got the most sharing from our customers. Perhaps you missed something on our list you’d be interested in.

Oh, and if you don’t follow us on Twitter, why not?

How to restart the Management agents on a VMware vSphere ESXi or ESX host
Poor network performance when using VMXNET3 adapter for routing in a Linux guest operating system (2077393)
Configuring the ESXi host with Active Directory authentication
Configuring the ESXi host with Active Directory authentication (2075361)
ESXi host initiates ARP Broadcast storm to NFS server (2080034)
Veeam virtual machine backups fail with the error: The host is not licensed for this feature (2080352)
Downgrading device drivers in VMware ESXi 5.x (2079279)
ESXi 5.5 … purple … screen error:#PF Exception 14 in world 33426: vmkeventd IP 0x418002c71507 addr 0×0 (2061842)
Storage Controllers previously supported for VSAN that are no longer supported (2081431)
VMware ESXi 5.1, Patch Release ESXi510-201406001 (2077640)
VM loses network connectivity during migration … in vCNS 5.1.4 and 5.5.2 and NSX for vSphere 6.0.4 (2080479)
Copying a file is slow on HTTP connections in vCenter Server (2081624)
VMware ESXi host in the vSphere Distributed Switch (vDS) are out of sync (2081052)
Preparing Windows 2008 R2 SP1 Server as a desktop to be deployed by Horizon DaaS (Desktone) (2080765)
Adding an Integrated Active Directory (IWA) Identity Source without the vSphere Web Client for vCenter SSO (2063424)
Upgrade paths and product compatibility for PowerCLI versions that feature OpenSSL security fixes (2082132)
Upgrading VMware vCenter Server 5.5 to a 5.5.x version using Simple Install fails (2074676)
VMware ESXi 5.1, Patch ESXi-5.1.0-20140604001-standard (2077642)
Dell EqualLogic Multipathing Extension Module (MEM) in View environments storage performance degradation (2078451)
Booting the ESXi host fails at Initializing scheduler (2077712)

VMware Support Options

Ever wondered what all of your options are when it came to technical support from VMware?

Listen to David Hulbert as he provides a 3 minute overview of VMware Technical Support, describing all of the levels of support options available.