VMware Cloud Community
cayden2018
Contributor
Contributor
‎04-08-2020 11:45 PM

Cannot display vcenter client login interface and change https://localhost/websso/SAML2/SSOSSL

Hi,all

      I have problems installing vCenter Server Appliance 6.7。After the installation is complete, I visit https://192.168.0.51 and it show

企业微信截图_bf7ae60d-1ad0-4ced-8461-84e8f68e9b56.png

When I click on html5, an exception appears, as shown ,The visited link become  https://localhost/websso/SAML2/SSOSSL?RelyingPartyEntityId=aHR0cHM6Ly8xOTIuMTY4LjAuNTA6OTQ0My92c3BoZ...   ,

Looking forward to your reply, thanks!

企业微信截图_916f70d6-b78e-4212-9848-0074c2ec0f40.png

Reply
5 Replies
IRIX201110141
Champion
Champion
‎04-09-2020 09:08 AM

Well.... for me it looks like that you have installed the VCSA in a wrong way and you maybe have cheated during the installation.  The installer ask for a FQHN (in earlier version FQHN or IP) and i took noticed that this field is not marked as required any more (scratching head of course...)

But thats the value for the HTTPS Redirect during login which the application is used.  Redirecting to something which is named localhost alway ends up that your Browser is now query your local computer rather than the VCSA.

So if you enter a FQHN during the installation of the VCSA and you point the Browser to https://ip-of-vcsa the following happens:

1. Browser display vcsa frontpage when using the IP

2. Redirect to https://value-you-have-entered during installation for login

3. Redirect back to https://ip-of-vcsa and you can see the vCenter now

If you point your Browser to https://fqhn-of-vcsa

1. No redirects and also the SSL Certs (after you import the VCSA ROOT CA) will show no error

With 6.7u3 and later VMware supports the renaming of the VCSA. So can you show us https://ip-of-vcsa:5480  (login as user root) the network konfiguration where the Hostname is displayed?

Regards,
Joerg

Reply
cayden2018
Contributor
Contributor
‎04-09-2020 04:11 PM

Thank you for your reply。The screenshot of accessing https://ip-of-vcsa:5480/  is as follows

企业微信截图_bbe5f009-07a6-4ded-b954-8cab2737b66e.png

企业微信截图_053030bd-237a-4819-851f-f37c71141fab.png

Reply
0 Kudos
IRIX201110141
Champion
Champion
‎04-10-2020 01:31 AM

The photon-machine Hostname indicates that you have leave the field empty.

I can see another problem. You use the gjjline.bta.net.cn as DNS and iam pretty sure that it doesnt provide the records vCenter needs.

1. Create a propper (Reverse) DNS entry like vcsa.home.local

2. Make an Snapshot of the VM

3. Change DNS and Hostname to valid entries

4. vCenter will regenerate all SSL certs. You should reboot after that

See if its now better.

Btw. if you install vCenter first some days ago i ask why you have not use 6.7u3 latest... version 43200 is the last or so. If you try to reinstall please use "vsphere.local" as SSO Name because thats the standard one.

Regards,

Joerg

Reply
cayden2018
Contributor
Contributor
‎04-10-2020 02:51 AM

Thank you very much for your reply, I have tested successfully. The specific method is to set vsphere.local and photon-machine to IP.

Reply
0 Kudos
IRIX201110141
Champion
Champion
‎04-10-2020 05:34 AM

You are welcome.

Regards,
Joerg

Reply
0 Kudos