Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Known issues when deploying Deep Security Virtual Appliance in VMware NSX-T 2.5

    • Updated:
    • 4 Dec 2019
    • Product/Version:
    • Deep Security 12.0
    • Platform:
    • N/A
Summary

VMware NSX-T 2.5 only allows a VMware digital signature signed OVF to be deployed. It was newly introduced in NSX-T 2.5. This article describes a couple of known issues that the change has caused when deploying Deep Security Virtual Appliance (DSVA) in NSX-T 2.5.

 
NSX-T 2.5 requires new OVF which is not generally available as of December 4, 2019.
Details
Public

An issue has been found on SSL certificate of VMware NSX-T 2.5 certification checking mechanism if the partner console provides a self-signed certificate. After importing Deep Security Appliance 12.0.0-682 or later to Deep Security Manager, the following error may appear when deploying DSVA from VMware NSX-T 2.5 console, which leads to DSVA deployment failure.

The workaround is to prepare a web server to deploy Deep Security Virtual Appliance. However, it is recommended to use HTTP and avoid using HTTPs.

For more details about this known issue, please see this VMware article.

In earlier versions, pre-configured OVF was allowed and you can modify the resources (e.g. CPU, memory) before deploying DSVA. In NSX-T 2.5, however, OVF modification may cause failure in DSVA deployment because of the integrity checking on NSX.

Here is a workaround in case you want to deploy a non-default OVF:

  1. Prepare an HTTP web server to deploy Deep Security Virtual Appliance.
  2. Use the OVF file that best suits your environment. Trend Micro provides four (4) OVF files which differs in resource allocation. For more details on suggested resource allocation, refer to Deep Security Help Center.
    OVF FilesvCPUMemory
    dsva.ovf24096 MB
    dsva-small.ovf28192 MB
    dsva-medium.ovf416384 MB
    dsva-large.ovf624576 MB
Premium
Internal
Rating:
Category:
Troubleshoot
Solution Id:
000157039
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.