[500] An error occurred while fetching identity pr...

carham · ‎06-06-2023

Hello all

I tried to update my vCenter 8.0.1.00000 with the latest fix to 8.0.1.00100, which unfortunately failed.
After getting the snapshot back the following error message appears when I try to log in:

[500] An error occurred while fetching identity providers. Try again. If problem persists, contact your administrator.

I have already found the article https://kb.vmware.com/s/article/83161 and executed the file as described here --> https://zewwy.ca/index.php/2021/09/20/fixing-vcenter-500-an-error-occurred-while-fetching-identity-p...
Result: Replacement finished - Please restart services on all vCenters and PSCs in your SSO domain
Seems to have run correctly

Unfortunately I still can't log in, port 5480 and SSH work.
I have cleared the browser cache countless times and tested different browsers.

All but the following services have started:
VMware vSphere ESXi Dump Collector, Manual, Stopped
VMware vCenter High Availability, Deactivated, Stopped
VMware vSphere Authentication Proxy, Manual, Stopped

Does anyone have any idea what else I could do ?

Thanks a lot

Ajay1988 · ‎06-06-2023

Can't comment much.. Need to look into logs.

Share the /var/log/vmware/trustmanagement/trustmanagement-svcs.log and /var/log/vmware/vsphere-ui/logs/vsphere_client_virgo.log after trying a login.

If you think your queries have been answered
Mark this response as "Correct" or "Helpful".

Regards,
AJ

carham · ‎06-06-2023

Thanks for your answer, attached are the logs from a test login

Ajay1988 · ‎06-06-2023

Are you able to login using SSO admin credentials ?
Is the issue only with AD users ?

I see the below errors . Not sure if you had any SSO group removed. But probably vmdird logs will help. I will suggest getting a SR with VMware Support.

2023-06-06T17:53:47.494+02:00 [tomcat-exec-12 [] WARN com.vmware.vcenter.trustmanagement.impl.VcIdentityProviders opId=] com.vmware.sso.interop.ldap.NoSuchObjectLdapException: No such object
LDAP error [code: 32]

[2023-06-06T17:53:56.540+02:00] [ERROR] tp-nio-127.0.0.1-5090-exec-2 70000063 100021 ###### com.vmware.vsphere.client.security.oauth2.LoginRequestHandler An error occurred while fetching providers java.util.NoSuchElementException: Service not found: com.vmware.vcenter.identity.providers

If you think your queries have been answered
Mark this response as "Correct" or "Helpful".

Regards,
AJ

carham · ‎06-06-2023

I have not removed any groups.
The problem is that the logon page does not appear. I have no possibility to choose a local account.
After pressing the "LAUNCH VSPHERE CLIENT" button, the error appears immediately.

Regards

Ajay1988 · ‎06-06-2023

Hmm. That sounds odd.
check /var/log/vmware/vmdird/vmdird-syslog.log

And better to raise SR with Support. I feel some SSO group is missing . Do u have old back's up to restore and check ?

If you think your queries have been answered
Mark this response as "Correct" or "Helpful".

Regards,
AJ

carham · ‎06-06-2023

Unfortunately I don't have a backup except the snapshots I made (lesson learned 😞 )
And with my account (VMUG license) I also have no support at VMware, so I can't open a SR

Thanks for your help and Regards

carham · ‎06-06-2023

do you think that could help ? --> https://support.tools/post/vcenter-failing-to-leave-domain/

Regards

Ajay1988 · ‎06-06-2023

You can try the same.

Can you also share the vmdird log requested. will try to see .

If you think your queries have been answered
Mark this response as "Correct" or "Helpful".

Regards,
AJ

carham · ‎06-06-2023

Thanks again for your answer. Here's the log requested.

I'll wait to remove the domain, hopefully you'll find something in the attached log.

Regards

Ajay1988 · ‎06-06-2023

This log is clean and has very few logs...Is this log trimmed ?
Try opening the VC UI and generate that error and get the log again please ..

If you think your queries have been answered
Mark this response as "Correct" or "Helpful".

Regards,
AJ

carham · ‎06-07-2023

This is the complete log, i didn't take anything out or anything.
When I try to log in again, unfortunately no new entry appears in this log 😪

Regards

carham · ‎06-07-2023

was not the best idea with the domain take out, it still does not work, still the same error message. Attached the last log entries while trying to log in.

Regards