Hi All,
Seeking your assistance in below issue
I am getting below error when I try to rotate secrets of cloud VM through LCS.
When I click on "Rotate secrets" in LCS, it started processing for some time and after that status shows incomplete.
I tried
1) Restarting Machine
2) Tried the steps mentioned
https://cloudblogs.microsoft.com/dynamics365/it/2018/04/22/rotate-the-expired-or-nearly-expired-ssl-certificate-on-your-subscriptions-one-box-environments/
3) Tried the troubleshooting steps in
https://cloudblogs.microsoft.com/dynamics365/it/2018/04/23/known-issues-with-ssl-certificate-rotation-feature-in-lcs/
4) Account password is never changed
5) Also tried to perform from Powershell, steps mentioned in
https://cloudblogs.microsoft.com/dynamics365/it/2018/05/02/how-to-update-the-winrm-ssl-certificate-on-environments-deployed-in-your-subscription/?source=lcs
Screen shot of error occurred in Step 5
Hi,
Did you install the latest Azure powershell module before running the script? You can check this link to get that done.
Hi Gunjan,
Yes I am using powershell 7.2.1, which is downloaded from the link you provided.
Thanks for reply
Have you installed the Az module as mentioned here as well? I am re-confirming because most of the errors as per your screenshot say that the command is not recognized.
I downloaded from [View:https://docs.microsoft.com/en-us/powershell/scripting/install/installing-powershell-on-windows?view=powershell-7.2#msi:320:240]
and used msi installer highlighted in yellow
Once you have installed powershell, you will need to run Powershell as an admin and run the following commands -
Set-ExecutionPolicy -ExecutionPolicy RemoteSigned -Scope CurrentUser
Install-Module -Name Az -Scope CurrentUser -Repository PSGallery -Force
This will install Az module in Powershell, which is needed for connecting to your Azure subscription.
I already executed above command
There could be possibility that I am putting wrong subscription ID and resourcegroup name in below
Could you please suggest where i can get these details?
.\RenewWinRMCertificate.ps1 -AzureSubscriptionId <SubscriptionId> -ResourceGroupNameForVM
You can go to portal.azure.com and search for Virtual Machines. Click on Virtual machines in the search results which will list all the VMs deployed for you.
Go to the VM you are having the issue with (You can find the VM name from LCS). Click on the VM which should get you the details. Subscription Id and resource name should be mentioned here.
Unfortunately its same. No change
Is it require to run command with the azure account who has created/deployed this VM?
The account I am using to execute command has access to VM in LCS but not in portal.azure.com.
Can you see your VM under the Azure portal list of VMs? This is to make sure you have the correct subscription Id and resource group name.
I am not able to see VM in Azure portal. The same credential is used to run the command in Azure powershell.
I got the Subscription ID and Resource group from LCS
Under review
Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.
As AI tools become more common, we’re introducing a Responsible AI Use…
We are honored to recognize Abhilash Warrier as our Community Spotlight honoree for…
These are the community rock stars!
Stay up to date on forum activity by subscribing.
CA Neeraj Kumar 1,933
André Arnaud de Cal... 793 Super User 2025 Season 2
Sohaib Cheema 537 User Group Leader
