VMware Cloud Community
Tukaro
Contributor
Contributor
‎11-24-2014 02:38 AM

vCenter issue - A general system error occurred: Cannot get user info

Hello,

I have  one VMware vCenter Server 5.1.0 (not an appliance) to manage ESXI 5.1 Hosts. I have a probelm related to Active Directory Authentication with vSphere Client to the vCenter Server.

My problème is when logging in to vSphere Client to vCenter Server and using Active Directory Authentication account credantial , I am getting an error stating "A general system error occurred: Cannot get user info", but when i check a checkbox "use Windows session credentials" that work without problem.

   So i found alot of solution without fixed issue :

            - I have checked DNS, and can perform a forward and reverse DNS lookup with nslookup..

            - have also gone into the Web GUI and set the vCenter Single Sign On Identity Source as indicated in the following web links, and added several domain groups as authenticated users to the vCenter Server

                    http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=203551...

I was working fine last week, and then today I lost the ability to login again with AD credentials. Can someone please direct me to fixing this annoying problem?

0 Kudos
10 Replies
cjscol
Expert
Expert
‎11-24-2014 02:44 AM

When you login are you specifying the domain name as well as the user name in the username field, e.g.  DOMAIN\USER?

Calvin Scoltock VCP 2.5, 3.5, 4, 5 & 6 VCAP5-DCD VCAP5-DCA http://pelicanohintsandtips.wordpress.com/blog LinkedIn: https://www.linkedin.com/in/cscoltock
0 Kudos
Tukaro
Contributor
Contributor
‎11-24-2014 02:51 AM

Thank you cjscol for your Feedback,

Yes i specified my domaine as well with with different combination :


   1- Domain\UserName (So just a Netbios).

   2  Domain.xxx\UserName (So with FQDN)

   3- Domain.xxx\UserName@Domain.xxx (So with Fully FQDN)


The result is always the same Smiley Sad


0 Kudos
cjscol
Expert
Expert
‎11-24-2014 03:05 AM

Hmmm, looks like it is a common problem with 5.1.

Obviously the SSO connection to AD is working because you can login by ticking Windows Authentication.

Have you tried deleting and recreating the AD identity source as follows?

  1. Log into the vSphere Web Client using the Admin@System-Domain (for 5.1).
  2. Click Administration.
  3. Under Sign-On and Discovery, click Configuration.
  4. Click the Active Directory identity source.
  5. Under Actions, click Edit Identity Source.
  6. Make note of the information in the identity source.
  7. Click Cancel.
  8. Under Actions, click Delete Identity Source.
  9. Recreate the identity source using the short NETBIOS name in the Domain Alias field.
  10. Click Test Connection.
  11. Click OK.
Calvin Scoltock VCP 2.5, 3.5, 4, 5 & 6 VCAP5-DCD VCAP5-DCA http://pelicanohintsandtips.wordpress.com/blog LinkedIn: https://www.linkedin.com/in/cscoltock
0 Kudos
Tukaro
Contributor
Contributor
‎11-24-2014 03:10 AM

Yes I have already done this as indicated in my first message, but taht not fixe my problem (and i saved as default identity source for athentication )

0 Kudos
cjscol
Expert
Expert
‎11-24-2014 04:41 AM

Reboot the vCenter Server?  Is SSO running on the same server as vCenter?

Calvin Scoltock VCP 2.5, 3.5, 4, 5 & 6 VCAP5-DCD VCAP5-DCA http://pelicanohintsandtips.wordpress.com/blog LinkedIn: https://www.linkedin.com/in/cscoltock
0 Kudos
Tukaro
Contributor
Contributor
‎11-24-2014 07:16 AM

I reboot it, and i have always the same problem.

For your questiion, yes SSO is running ont the same server as vCenter5.1

really strange !

0 Kudos
Sateesh_vCloud
Expert
Expert
‎11-24-2014 08:20 AM

Can you try to Re-register vCenter Server with a vCenter Single Sign-On instance?

http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=203362...

------------------------------------------------------------------------- Follow me @ www.vmwareguruz.com Please consider marking this answer "correct" or "helpful" if you found it useful T. Sateesh VCIX-NV, VCAP 5-DCA/DCD,VCP 6-NV,VCP 5 DCV/Cloud/DT, ZCP IBM India Pvt. Ltd
0 Kudos
Tukaro
Contributor
Contributor
‎11-24-2014 10:23 PM

Sorry, i can't do it bacause there are alot of user connected to it.

That are difficult to predict this.


Thanks Sateesh_vCloud



0 Kudos
Tukaro
Contributor
Contributor
‎11-25-2014 02:09 AM

Please, no other suggestion  ?!!!!!


Thanks Smiley Happy

0 Kudos
Tukaro
Contributor
Contributor
‎11-26-2014 02:01 AM

Hello i got more information in log file vpxd.log :

2014-11-26T10:41:18.952+01:00 [05980 info '[SSO]' opID=F6D1C23F-00000004-fb] [UserDirectorySso] Authenticate(XYZ\TEST, "not shown")

2014-11-26T10:41:19.180+01:00 [05980 error '[SSO]' opID=F6D1C23F-00000004-fb] [UserDirectorySso] AcquireToken SsoException: Unexpected SOAP fault: ns0:RequestFailed; request failed.

2014-11-26T10:41:19.180+01:00 [05980 error 'authvpxdUser' opID=F6D1C23F-00000004-fb] Failed to authenticate user <XYZ\TEST>

Can a local user identity souce ( SSO - Configuration) be a problem for this issue, and what you think if i remove it, can that fix my problem.

I found this in VMware Community : vCenter 5.1 SSO and failure to successfully authenticate users

Thanks,

0 Kudos