You can use the TLS Configuration utility to revert configuration changes. When you revert the changes, the system enables protocols that you disabled using TLS Configurator utility.

About this task

You can only perform a recovery if you previously backed up the configuration. Reverting changes is not supported for ESXi hosts.

Perform recovery in this order.

  1. vSphere Update Manager.

    If your environment runs a separate vSphere Update Manager instance on a Windows system, you have to update vSphere Update Manager first.

  2. vCenter Server

  3. Platform Services Controller

Procedure

  1. Connect to the Windows machine or the appliance.
  2. Log in to the system where you want to revert changes.

    OS

    Procedure

    Windows

    1. Log in as a user with Administrator privileges.

    2. Go to the VcTlsReconfigurator directory.

      cd C:\Program Files\VMware\CIS\vSphereTlsReconfigurator\VcTlsReconfigurator

    Linux

    1. Connect to the appliance using SSH and log in as a user who has privileges to run scripts.

    2. If the Bash shell is not currently enabled, run the following commands.

      shell.set --enabled true
      shell
    3. Go to the VcTlsReconfigurator directory.

      cd /usr/lib/vmware-vSphereTlsReconfigurator/VcTlsReconfigurator
  3. Review the previous backup.

    OS

    Procedure

    Windows

    C:\ProgramData\VMware\vCenterServer\logs\vSphere-TlsReconfigurator\VcTlsReconfigurator.log
    

    The output looks like the following example.

    c:\users\username\appdata\local\temp\20161108T161539
    c:\users\username\appdata\local\temp\20161108T171539

    Linux

    grep "backup directory" /var/log/vmware/vSphere-TlsReconfigurator/VcTlsReconfigurator.log
    

    The output looks like the following example.

    2016-11-17T17:29:20.950Z INFO Using backup directory: /tmp/20161117T172920
    2016-11-17T17:32:59.019Z INFO Using backup directory: /tmp/20161117T173259
  4. Run one of the following commands to perform a restore.

    OS

    Procedure

    Windows

    reconfigureVc restore -d Directory_path_from_previous_step
    

    For example

    reconfigureVc restore -d c:\users\username\appdata\local\temp\20161108T171539
    

    Linux

    reconfigureVc restore -d Directory_path_from_previous_step
    

    For example

    reconfigureVc restore -d /tmp/20161117T172920
  5. Repeat the procedure on any other vCenter Server instances.
  6. Repeat the procedure on any other Platform Services Controller instances.