Hello,
I have one VMware vCenter Server 5.1.0 (not an appliance) to manage ESXI 5.1 Hosts. I have a probelm related to Active Directory Authentication with vSphere Client to the vCenter Server.
My problème is when logging in to vSphere Client to vCenter Server and using Active Directory Authentication account credantial , I am getting an error stating "A general system error occurred: Cannot get user info", but when i check a checkbox "use Windows session credentials" that work without problem.
So i found alot of solution without fixed issue :
- I have checked DNS, and can perform a forward and reverse DNS lookup with nslookup..
- have also gone into the Web GUI and set the vCenter Single Sign On Identity Source as indicated in the following web links, and added several domain groups as authenticated users to the vCenter Server
I was working fine last week, and then today I lost the ability to login again with AD credentials. Can someone please direct me to fixing this annoying problem?
When you login are you specifying the domain name as well as the user name in the username field, e.g. DOMAIN\USER?
Thank you cjscol for your Feedback,
Yes i specified my domaine as well with with different combination :
1- Domain\UserName (So just a Netbios).
2 Domain.xxx\UserName (So with FQDN)
3- Domain.xxx\UserName@Domain.xxx (So with Fully FQDN)
The result is always the same
Hmmm, looks like it is a common problem with 5.1.
Obviously the SSO connection to AD is working because you can login by ticking Windows Authentication.
Have you tried deleting and recreating the AD identity source as follows?
Yes I have already done this as indicated in my first message, but taht not fixe my problem (and i saved as default identity source for athentication )
Reboot the vCenter Server? Is SSO running on the same server as vCenter?
I reboot it, and i have always the same problem.
For your questiion, yes SSO is running ont the same server as vCenter5.1
really strange !
Can you try to Re-register vCenter Server with a vCenter Single Sign-On instance?
Sorry, i can't do it bacause there are alot of user connected to it.
That are difficult to predict this.
Thanks Sateesh_vCloud
Please, no other suggestion ?!!!!!
Thanks
Hello i got more information in log file vpxd.log :
2014-11-26T10:41:18.952+01:00 [05980 info '[SSO]' opID=F6D1C23F-00000004-fb] [UserDirectorySso] Authenticate(XYZ\TEST, "not shown")
2014-11-26T10:41:19.180+01:00 [05980 error '[SSO]' opID=F6D1C23F-00000004-fb] [UserDirectorySso] AcquireToken SsoException: Unexpected SOAP fault: ns0:RequestFailed; request failed.
2014-11-26T10:41:19.180+01:00 [05980 error 'authvpxdUser' opID=F6D1C23F-00000004-fb] Failed to authenticate user <XYZ\TEST>
Can a local user identity souce ( SSO - Configuration) be a problem for this issue, and what you think if i remove it, can that fix my problem.
I found this in VMware Community : vCenter 5.1 SSO and failure to successfully authenticate users
Thanks,