Hello again forum!
Just trying to get my head around vCO with vCAC and I was adding the vCenter and AD endpoints from Home > Administration > Advanced Services > Endpoints (as per Kendricks blog: http://www.kendrickcoleman.com/index.php/Tech-Blog/how-to-install-vcloud-automation-center-vcac-60-p...).
And the process fails with "Unable to create a vCO endpoint of type VC. Reason:". The /var/lib/vcac/server/logs/catalina.out gives a bit more info:-
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - SAML assertion attributes successfully parsed. Got issueInstant: Tue May 06 14:45:28 BST 2014
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - Conditions parsed successfully. Got startTime: Tue May 06 14:45:28 BST 2014 expirationTime: Thu J un 05 14:45:28 BST 2014
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - SubjectNameId [value=superadmin@dbtest.local, format=http://schemas.xmlsoap.org/claims/UPN] succe ssfully extracted from the token
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - Got confirmation type: HOLDER_OF_KEY
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - IssuerNameId [value=https://lab-id2.dbtest.local:7444/websso/SAML2/Metadata/vsphere.local, format =urn:oasis:names:tc:SAML:2.0:nameid-format:entity] successfully extracted from the token
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - Groups successfully extracted from token
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - isSolution attribute parsed successfully from [false] to: false
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - Attribute statements successfully parsed
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - Token fields are successfully populated
INFO : com.vmware.identity.token.impl.SamlTokenImpl - SAML token for SubjectNameId [value=superadmin@dbtest.local, format=http://schemas.xmlsoap.org/cl aims/UPN] successfully parsed from XML
DEBUG: com.vmware.identity.token.impl.X509TrustChainKeySelector - Trusted path found: <OU=ldu-e145db21-9612-4bbe-9195-5ec2eb98ddc8,C=US,CN=ssoserverSig n\,dc\=vsphere\,dc\=local>
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - SAML token signature is valid status: true
DEBUG: com.vmware.identity.token.impl.SamlTokenImpl - Token is successfully validated
ERROR: com.vmware.vcac.platform.service.rest.resolver.ApplicationExceptionHandler - [Error code: 85023 ] - [Error Msg: 85023-Unable to create a vCO endpoint of type VC. Reason: ]
[Error code: 85023 ] - [Error Msg: 85023-Unable to create a vCO endpoint of type VC. Reason: ]
at com.vmware.vcac.designer.service.impl.EndpointManagementWorkflowServiceImpl.executeConfigurationWorkflow(EndpointManagementWorkflowServiceImpl.java:122)
at com.vmware.vcac.designer.service.controller.EndpointManagementController.create(EndpointManagementController.java:143)
at com.vmware.vcac.designer.service.controller.EndpointManagementController$$FastClassByCGLIB$$9463c27c.invoke(<generated>)
at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204)
at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:698)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:150)
at org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor.invoke(MethodSecurityInterceptor.java:64)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:172)
at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:631)
at com.vmware.vcac.designer.service.controller.EndpointManagementController$$EnhancerByCGLIB$$c411c6db.create(<generated>)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at org.springframework.web.method.support.InvocableHandlerMethod.invoke(InvocableHandlerMethod.java:219)
at org.springframework.web.method.support.InvocableHandlerMethod.invokeForRequest(InvocableHandlerMethod.java:132)
at org.springframework.web.servlet.mvc.method.annotation.ServletInvocableHandlerMethod.invokeAndHandle(ServletInvocableHandlerMethod.java:104)
at org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.invokeHandleMethod(RequestMappingHandlerAdapter.java:745)
at org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.handleInternal(RequestMappingHandlerAdapter.java:686)
at org.springframework.web.servlet.mvc.method.AbstractHandlerMethodAdapter.handle(AbstractHandlerMethodAdapter.java:80)
at org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:925)
at org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:856)
at org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:936)
at org.springframework.web.servlet.FrameworkServlet.doPost(FrameworkServlet.java:838)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:647)
at org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:812)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:728)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:118)
at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:84)
at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:113)
at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:113)
at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:150)
at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at com.vmware.vcac.authentication.http.spring.SamlTokenAuthenticationFilter.doFilter(SamlTokenAuthenticationFilter.java:83)
at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at com.vmware.vcac.authentication.http.tenancy.TenancyContextFilter.doFilterWithTenancyContext(TenancyContextFilter.java:59)
at com.vmware.vcac.authentication.http.tenancy.TenancyContextFilter.doFilter(TenancyContextFilter.java:47)
at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:50)
at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)
at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87)
at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192)
at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160)
at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346)
at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:259)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:88)
at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:222)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:99)
at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:936)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407)
at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:200)
at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:589)
at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:310)
at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
at java.lang.Thread.run(Unknown Source)
DNS resolution all checks out, all users have the correct permissions etc. Any ideas would be much appreciated.
Danny
VCP4/5, VCP6-CMA, VCAP-DCA4/5, VCAP-CIA, AWS-CSA, CCNA, MCSE, MCSA
. What i can say is that vCO endpoint config can be a bit picky and here is my current setup, which is working.