The NSX Network Detection and Response feature activation wizard reports an error.

Problem

The NSX Network Detection and Response feature activation failed and the activation wizard reports an error similar to the following output.

The feature activation took too long. Either the Kubernetes pods failed to come up or the registration with NSX Manager failed.

The Activate button remains dimmed.

Cause

The NSX Network Detection and Response feature activation requires the deployment of several Kubernetes-based workloads on top of the NSX Application Platform cluster. If the cluster is in a degraded or an unstable state, the NSX Network Detection and Response activation can fail.

1. Ensure that NSX Application Platform is deployed correctly and is reported as STABLE on the Systems > NSX Application Platform UI page.
2. Inspect the logs for the NSX Cloud Connector registration service.
   1. Collect an NSX Application Platform support bundle and inspect the logs for any Kubernetes pod with the name starting with nsx-ndr-enable-ids or nsx-ndr-setup-kafka.
   2. Alternatively, the logs can also be queried interactively on the NSX Manager appliance using the following steps.
      1. Log into the NSX Manager appliance as root.
      2. Use the following command to mark the Kubernetes configuration for any subsequent helm and kubectl invocations.

         export KUBECONFIG=/config/vmware/napps/.kube/config

      3. Using the following command, ensure that the NSX Cloud Connector helm chart is deployed successfully.

         helm --namespace nsxi-platform list --all --filter 'nsx-ndr'

         Verify that the STATUS property displays deployed.
      4. Use the following command to inspect that the setup pods are deployed and completed successfully.

         kubectl --namespace nsxi-platform get pods --selector='job-name in (nsx-ndr-enable-ids, nsx-ndr-setup-kafka)'

         Two pods must exist and both are showing the STATUS as Completed.
      5. Inspect the logs for the setup pod, using the following command.

         kubectl --namespace nsxi-platform logs --selector='job-name in (nsx-ndr-enable-ids, nsx-ndr-setup-kafka)'

3. After resolving the error, click Actions in the NSX Network Detection and Response feature card. Select Delete to initiate the deletion of the partially activated NSX Network Detection and Response feature. After the delete process finishes, retry activating the feature again.