VMware Cloud Community
amurrey
Enthusiast
Enthusiast
‎06-13-2014 12:39 PM

5.5 SSO issue

Hello,

I just upgraded from 5.1 to 5.5.

Now when i try to log in with an AD Account to the Web Client, I get an error "Not authenticated with Inventory Service".  When I log in with the administrator@vsphere.local account, it works fine.  I've tried removing and re-adding the AD identity source with no luck.  I've tried restarting the inventory service, no luck.

Any ideas?

Reply
0 Kudos
7 Replies
rcporto
Leadership
Leadership
‎06-13-2014 03:27 PM

Check if this KB helps: Logging in to vSphere Web Client fails with the error: Client is not authenticated to VMware Invento...

---

Richardson Porto
Senior Infrastructure Specialist
LinkedIn: http://linkedin.com/in/richardsonporto
Reply
0 Kudos
Browlin
Enthusiast
Enthusiast
‎06-15-2014 01:38 AM

Hi,,

Could you pls follow the link

http://blog.shiplett.org/vsphere-5-5-web-client-workflows-sso-configuration/

Browlin  VCP ,RHCE

Reply
0 Kudos
amurrey
Enthusiast
Enthusiast
‎06-18-2014 06:05 AM

Neither of these suggestions have helped.

I am able to log in via the VIClient just fine, however the web client is reporting the error.

Reply
0 Kudos
amurrey
Enthusiast
Enthusiast
‎06-18-2014 06:18 AM

I have tried to remove the AD related group, and re-add it via the web interface, and that still doesn't fix the issue.

Reply
0 Kudos
amurrey
Enthusiast
Enthusiast
‎06-18-2014 06:23 AM

If I add my domain account specifically to the permissions settings on vCenter, it works.  If I am just a member of a group, which I have verified case on, it doesn't.  SSO 5.5 is WHACKED!

Reply
0 Kudos
vThinkBeyondVM
VMware Employee
VMware Employee
‎06-18-2014 06:25 AM

Can you please post the all the scree shots that you go through for identity source configuration from web client and adding domain user to "administrators groups" etc. ?

If possible give all the steps (if not all the screen shots) for above config.

It will help us to know what exactly you have configured.

Note: Only adding identity source may not help.


----------------------------------------------------------------
Thanks & Regards
Vikas, VCP70, MCTS on AD, SCJP6.0, VCF, vSphere with Tanzu specialist.
https://vThinkBeyondVM.com/about
-----------------------------------------------------------------
Disclaimer: Any views or opinions expressed here are strictly my own. I am solely responsible for all content published here. Content published here is not read, reviewed or approved in advance by VMware and does not necessarily represent or reflect the views or opinions of VMware.

Reply
0 Kudos
amurrey
Enthusiast
Enthusiast
‎06-18-2014 06:36 AM

There isn't really anything to screen shot.  The domain is setup with windows authentication, and the domain name. 

When adding the user, I browse to the user, select it, and click check names for good measure.  If I add an individual user, that works.  If I add a group, that doesn't work, or PARTIALLY works.  One of my group members when the log on, only gets about 10% of the inventory coming up in web client.

Reply
0 Kudos