Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Dynamics 365 Community / Forums / Finance forum / LCS Rotating secrets n...
Finance forum
Answered

LCS Rotating secrets not working

(1) ShareShare
ReportReport
Posted on by Darrell Tunnell 18
We have not used the environment in some time, and our SSL cert has expired. In LCS I have been trying to /rotate secrets/ however after running for some time this results in /incomplete/.
I have logged into the VM using the username / password on the LCS environment details page - and windows warned me the users password had expired and needed changing. I updated the user account and set password not to expire, and kept it the same as the LCS environment page. I tried to rotate secrets again - same problem /incomplete/.
In the environment history there is no mentiong of even the attept of rotating secrets - its like nothing happens from the LCS environment history tab perspective.
 
How can I remedy this?
 
In addition - there are update packages to apply via LCS but these fail to. I was suspecting that the secret needed to be rotated first as perhaps the expired SSL cert causes the update attempt to fail.
  • CU29041349-0 Profile Picture
    CU29041349-0 182 on at
    LCS Rotating secrets not working
    Hi Darrell,
    Having the same issue. Followed the article but could not find the Share asset library. Under Asset library > Model, I only see "Dynaway EAM [version]. Hoping you (or anyone) can provide some further details. 
  • Suggested answer
    Navneeth Nagrajan Profile Picture
    Navneeth Nagrajan 1,339 on at
    LCS Rotating secrets not working
    HI,
     
    Another suggestion is in case, if the Rotate Secret SSL is not working the first time then you need to first do the following to make the Rotate secrets work.
    1. Rotate Dynamics Deployment certificate 
    2. Rotate Monitoring agent certificate
     
    Once the above mentioned certificates work then you can do a Rotate SSL certificate 
     
  • André Arnaud de Calavon Profile Picture
    André Arnaud de Cal... 288,584 Super User on at
    LCS Rotating secrets not working
    Thanks for providing your solution for the community, Darrell. I have marked your reply as a verified answer. 
  • Verified answer
    Darrell Tunnell Profile Picture
    Darrell Tunnell 18 on at
    LCS Rotating secrets not working
    Figured out the issue in the end
     
    Rotate secrets will fail if the WinRM ssl cert on the machine expires. Issue / fix described here https://cloudblogs.microsoft.com/dynamics365/it/2018/05/02/how-to-update-the-winrm-ssl-certificate-on-environments-deployed-in-your-subscription/
     
    Once I worked through this (the procedure itself had some issues I needed to workaround tsssk) then I was finally able to rotate secrets.
  • André Arnaud de Calavon Profile Picture
    André Arnaud de Cal... 288,584 Super User on at
    LCS Rotating secrets not working
    Hi Darrell,
     
    When rotating the secrets, the VM should be running. I thought it is trying to use the credentials from the LCS environment page. In case you changed the password (maybe you didn't), the rotating secrets can't be executed then.
    Have you checked if all licenses are still valid? The VM comes with time-limited evaluation software. Maybe the Windows license and/or SQL got expired?
     
    Anyway, if you deploy a new environment everything should work smoothly again.

Helpful resources

Quick Links

Replay now available! Dynamics 365 Community Call (CRM Edition)

Catch up on the first D365 Community Call held on 7/10

Community Spotlight of the Month

Kudos to Saurav Dhyani!

Congratulations to the June Top 10 community leaders!

These stars go above and beyond . . .

more Community News

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 288,584 Super User

#2
Martin Dráb Profile Picture

Martin Dráb 225,864 Super User

#3
nmaenpaa Profile Picture

nmaenpaa 101,148

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans