VMware Cloud Community
VMCommando
Contributor
Contributor

vCentre 5 Linux Appliance - LDAP Issue?

I have configured the linux vcentre appliance already once in a test environment and I had AD communication working fine. However despite rejoining the domain and restarting the appliance, it seems whenever I go to configure permissions in vcentre (through the vsphere client) and query the domain for the users list I get the following error:

Call "UserDirectory.RetrieveUserGroups" for object "UserDirectory" on vCenter Server "Namehere" failed.

Any ideas for what the issue might be?

Thanks

Reply
0 Kudos
6 Replies
Bisti
Enthusiast
Enthusiast

Same stuff here. The only info i found is that the VC service should be on local account but that can only be done on "normal" vcenter.

Reply
0 Kudos
Skyward-willw
Contributor
Contributor

Same here - can't find any instructions I have missed.  Simple vCenter Appliance with embedded database.  No hosts added yet.  Just the vCenter and Active Directory configured.

Call "UserDirectory.RetrieveUserGroups" for object "UserDirectory" on vCenter Server failed.

Guess we won't be using the Appliance...

Reply
0 Kudos
Bisti
Enthusiast
Enthusiast

You can still enter account or groups manually and they will work. Spaces ill be replaced by "^" but this is nothing to worry about.

Reply
0 Kudos
VMCommando
Contributor
Contributor

I had meant to reply earlier to this thread but I did resolve my issue -- I removed the linux appliance from the domain, rebooted the appliance and rejoined it to the domain.

Suddenly everything started working -- I can't say I really blame vmware for this, open ldap with Windows domains even on Red Hat has always been flaky for the initial setup for me. However I stopped using the linux appliance -- mainly for the fact that it doesnt support vmware view fully. I do like it for the lack of a windows license and the smaller footprint however.

Lets get some vmware view support with it so I can use it again!

Reply
0 Kudos
RParker
Immortal
Immortal

One thing that isn't obvious and where we discovered a problem is NTP must be configured before you do any domain operations.  so make sure that appliance has the right time and it's in synch with your domain.

I also saw the same as you initially, but ever since NTP was configured to synch constantly.. it has not been a problem

Reply
0 Kudos
RParker
Immortal
Immortal

Skyward-willw wrote:

Same here - can't find any instructions I have missed.  Simple vCenter Appliance with embedded database.  No hosts added yet.  Just the vCenter and Active Directory configured.

Call "UserDirectory.RetrieveUserGroups" for object "UserDirectory" on vCenter Server failed.

Guess we won't be using the Appliance...

Appliance works fine here.. check your NTP settings, are they configured for atomic clock?  Because it's not enabled by default..

Reply
0 Kudos