VMware Cloud Community
FerrerDeCouto
Commander
Commander
‎01-02-2014 01:38 AM
Jump to solution

vCAC 6.0 adding an identity store to vsphere.local "System exception"

Hello everyone,

When I try to add my first identity store to vsphere.local I receive a System exception error. The ldap test works fine, but I can't add the identity store. You can find below the log and screenshot.

2014-01-02T10:24:11.653480+01:00 vcac cafe-authentication: 2014-01-02 10:24:11,652 [tomcat-http--1] ERROR com.vmware.vcac.platform.service.rest.resolver.ApplicationExceptionHandler.handleUnexpectedException:820 - Constraint violation


2014-01-02T10:24:11.653547+01:00 vcac javax.validation.ValidationException: Constraint violation


2014-01-02T10:24:11.653598+01:00 vcac     at com.vmware.vcac.authentication.service.sso.impl.AbstractSSOManagementImpl.convertException(AbstractSSOManagementImpl.java:71)


2014-01-02T10:24:11.653646+01:00 vcac     at com.vmware.vcac.authentication.service.sso.impl.IdentityStoreManagementImpl.createOrUpdateIdentityStore(IdentityStoreManagementImpl.java:223)


2014-01-02T10:24:11.653678+01:00 vcac     at com.vmware.vcac.authentication.service.impl.IdentityStoreServiceImpl.saveOrUpdate(IdentityStoreServiceImpl.java:44)


2014-01-02T10:24:11.653707+01:00 vcac     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)


2014-01-02T10:24:11.653735+01:00 vcac     at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)


2014-01-02T10:24:11.653763+01:00 vcac     at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)


2014-01-02T10:24:11.653791+01:00 vcac     at java.lang.reflect.Method.invoke(Unknown Source)


2014-01-02T10:24:11.653818+01:00 vcac     at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:317)


2014-01-02T10:24:11.653858+01:00 vcac     at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:183)


2014-01-02T10:24:11.653891+01:00 vcac     at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:150)


2014-01-02T10:24:11.653920+01:00 vcac     at org.springframework.transaction.interceptor.TransactionInterceptor$1.proceedWithInvocation(TransactionInterceptor.java:96)


2014-01-02T10:24:11.653949+01:00 vcac     at org.springframework.transaction.interceptor.TransactionAspectSupport.invokeWithinTransaction(TransactionAspectSupport.java:260)


2014-01-02T10:24:11.653985+01:00 vcac     at org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:94)


2014-01-02T10:24:11.654014+01:00 vcac     at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:172)


2014-01-02T10:24:11.654052+01:00 vcac     at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)


2014-01-02T10:24:11.654082+01:00 vcac     at com.sun.proxy.$Proxy1342.saveOrUpdate(Unknown Source)


2014-01-02T10:24:11.654143+01:00 vcac     at com.vmware.vcac.authentication.controller.IdentityStoreController.updateOrCreate(IdentityStoreController.java:87)


2014-01-02T10:24:11.654182+01:00 vcac     at com.vmware.vcac.authentication.controller.IdentityStoreController$$FastClassByCGLIB$$d778b2b1.invoke(<generated>)


2014-01-02T10:24:11.654211+01:00 vcac     at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204)


2014-01-02T10:24:11.654239+01:00 vcac     at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:698)


2014-01-02T10:24:11.654267+01:00 vcac     at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:150)


2014-01-02T10:24:11.654296+01:00 vcac     at org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor.invoke(MethodSecurityInterceptor.java:64)


2014-01-02T10:24:11.654328+01:00 vcac     at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:172)


2014-01-02T10:24:11.654357+01:00 vcac     at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:631)


2014-01-02T10:24:11.654386+01:00 vcac     at com.vmware.vcac.authentication.controller.IdentityStoreController$$EnhancerByCGLIB$$31d2f577.updateOrCreate(<generated>)


2014-01-02T10:24:11.654414+01:00 vcac     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)


2014-01-02T10:24:11.654443+01:00 vcac     at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)


2014-01-02T10:24:11.654471+01:00 vcac     at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)


2014-01-02T10:24:11.654499+01:00 vcac     at java.lang.reflect.Method.invoke(Unknown Source)


2014-01-02T10:24:11.654527+01:00 vcac     at org.springframework.web.method.support.InvocableHandlerMethod.invoke(InvocableHandlerMethod.java:219)


2014-01-02T10:24:11.654556+01:00 vcac     at org.springframework.web.method.support.InvocableHandlerMethod.invokeForRequest(InvocableHandlerMethod.java:132)


2014-01-02T10:24:11.654585+01:00 vcac     at org.springframework.web.servlet.mvc.method.annotation.ServletInvocableHandlerMethod.invokeAndHandle(ServletInvocableHandlerMethod.java:104)


2014-01-02T10:24:11.654618+01:00 vcac     at org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.invokeHandleMethod(RequestMappingHandlerAdapter.java:745)


2014-01-02T10:24:11.654647+01:00 vcac     at org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.handleInternal(RequestMappingHandlerAdapter.java:686)


2014-01-02T10:24:11.654682+01:00 vcac     at org.springframework.web.servlet.mvc.method.AbstractHandlerMethodAdapter.handle(AbstractHandlerMethodAdapter.java:80)


2014-01-02T10:24:11.654709+01:00 vcac     at org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:925)


2014-01-02T10:24:11.654737+01:00 vcac     at org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:856)


2014-01-02T10:24:11.654765+01:00 vcac     at org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:936)


2014-01-02T10:24:11.654792+01:00 vcac     at org.springframework.web.servlet.FrameworkServlet.doPut(FrameworkServlet.java:849)


2014-01-02T10:24:11.654828+01:00 vcac     at javax.servlet.http.HttpServlet.service(HttpServlet.java:650)


2014-01-02T10:24:11.654874+01:00 vcac     at org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:812)


2014-01-02T10:24:11.654915+01:00 vcac     at javax.servlet.http.HttpServlet.service(HttpServlet.java:728)


2014-01-02T10:24:11.654945+01:00 vcac     at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305)


2014-01-02T10:24:11.654973+01:00 vcac     at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)


2014-01-02T10:24:11.655001+01:00 vcac     at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)


2014-01-02T10:24:11.655135+01:00 vcac     at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:118)


2014-01-02T10:24:11.655167+01:00 vcac     at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:84)


2014-01-02T10:24:11.655195+01:00 vcac     at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)


2014-01-02T10:24:11.655223+01:00 vcac     at org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:113)


2014-01-02T10:24:11.655252+01:00 vcac     at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)


2014-01-02T10:24:11.655286+01:00 vcac     at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:113)


2014-01-02T10:24:11.655315+01:00 vcac     at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)


2014-01-02T10:24:11.655343+01:00 vcac     at org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:150)


2014-01-02T10:24:11.655372+01:00 vcac     at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)


2014-01-02T10:24:11.655401+01:00 vcac     at com.vmware.vcac.authentication.http.spring.SamlTokenAuthenticationFilter.doFilter(SamlTokenAuthenticationFilter.java:83)


2014-01-02T10:24:11.655428+01:00 vcac     at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)


2014-01-02T10:24:11.655456+01:00 vcac     at com.vmware.vcac.authentication.http.tenancy.TenancyContextFilter.doFilterWithTenancyContext(TenancyContextFilter.java:59)


2014-01-02T10:24:11.655503+01:00 vcac     at com.vmware.vcac.authentication.http.tenancy.TenancyContextFilter.doFilter(TenancyContextFilter.java:47)


2014-01-02T10:24:11.655531+01:00 vcac     at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)


2014-01-02T10:24:11.655575+01:00 vcac     at org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:50)


2014-01-02T10:24:11.655624+01:00 vcac     at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)


2014-01-02T10:24:11.655664+01:00 vcac     at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)


2014-01-02T10:24:11.655693+01:00 vcac     at org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87)


2014-01-02T10:24:11.655721+01:00 vcac     at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)


2014-01-02T10:24:11.655749+01:00 vcac     at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192)


2014-01-02T10:24:11.655777+01:00 vcac     at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160)


2014-01-02T10:24:11.655820+01:00 vcac     at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346)


2014-01-02T10:24:11.655851+01:00 vcac     at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:259)


2014-01-02T10:24:11.655880+01:00 vcac     at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)


2014-01-02T10:24:11.655909+01:00 vcac     at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)


2014-01-02T10:24:11.655942+01:00 vcac     at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:88)


2014-01-02T10:24:11.655974+01:00 vcac     at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)


2014-01-02T10:24:11.656003+01:00 vcac     at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)


2014-01-02T10:24:11.656031+01:00 vcac     at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)


2014-01-02T10:24:11.656059+01:00 vcac     at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:222)


2014-01-02T10:24:11.656086+01:00 vcac     at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123)


2014-01-02T10:24:11.656114+01:00 vcac     at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472)


2014-01-02T10:24:11.656142+01:00 vcac     at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)


2014-01-02T10:24:11.656170+01:00 vcac     at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:99)


2014-01-02T10:24:11.656197+01:00 vcac     at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:936)


2014-01-02T10:24:11.656225+01:00 vcac     at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118)


2014-01-02T10:24:11.656252+01:00 vcac     at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407)


2014-01-02T10:24:11.656279+01:00 vcac     at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:200)


2014-01-02T10:24:11.656307+01:00 vcac     at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:589)


2014-01-02T10:24:11.656334+01:00 vcac     at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:310)


2014-01-02T10:24:11.656360+01:00 vcac     at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)


2014-01-02T10:24:11.656387+01:00 vcac     at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)


2014-01-02T10:24:11.656414+01:00 vcac     at java.lang.Thread.run(Unknown Source)


2014-01-02T10:24:11.656441+01:00 Caused by: com.vmware.vim.sso.admin.exception.InternalError: Constraint violation


2014-01-02T10:24:11.656468+01:00 vcac     at com.vmware.vim.sso.admin.client.vmomi.impl.VmomiClientCommand.execute(VmomiClientCommand.java:172)


2014-01-02T10:24:11.656495+01:00 vcac     at com.vmware.vim.sso.admin.client.vmomi.impl.VmomiClientCommand.executeEnsuringDomainErrorIs(VmomiClientCommand.java:220)


2014-01-02T10:24:11.656523+01:00 vcac     at com.vmware.vim.sso.admin.client.vmomi.impl.IdentitySourceManagementImpl.registerLdap(IdentitySourceManagementImpl.java:81)


2014-01-02T10:24:11.656550+01:00 vcac     at com.vmware.vcac.authentication.service.sso.impl.IdentityStoreManagementImpl.doCreateIdentityStore(IdentityStoreManagementImpl.java:196)


2014-01-02T10:24:11.656578+01:00 vcac     at com.vmware.vcac.authentication.service.sso.impl.IdentityStoreManagementImpl.createOrUpdateIdentityStore(IdentityStoreManagementImpl.java:216)


2014-01-02T10:24:11.656605+01:00 vcac     ... 86 more

vcac system exception.png

Best regards,

Jose Luis Gomez

José Luis Gómez Ferrer de Couto Founder of PiPo e2H Blog: http://blog.e2h.net Si encuentras que esta o cualquier otra respuesta fue de utilidad, por favor da el voto. Gracias. If you find this or any other answer useful, please consider awarding points. Thank you.
0 Kudos
1 Solution

Accepted Solutions
FerrerDeCouto
Commander
Commander
‎01-02-2014 01:53 AM
Jump to solution

Hello everyone again,

I found the error. In "Group search base DN" I added the security group name in the DN (CN=group,OU=vcac,DC=example,DC=local) and it doesn't work. I removed CN=group from DN and it works. It accepts only the base DN like says the label.

Best regards,

Jose Luis Gomez

José Luis Gómez Ferrer de Couto Founder of PiPo e2H Blog: http://blog.e2h.net Si encuentras que esta o cualquier otra respuesta fue de utilidad, por favor da el voto. Gracias. If you find this or any other answer useful, please consider awarding points. Thank you.

View solution in original post

0 Kudos
1 Reply
FerrerDeCouto
Commander
Commander
‎01-02-2014 01:53 AM
Jump to solution

Hello everyone again,

I found the error. In "Group search base DN" I added the security group name in the DN (CN=group,OU=vcac,DC=example,DC=local) and it doesn't work. I removed CN=group from DN and it works. It accepts only the base DN like says the label.

Best regards,

Jose Luis Gomez

José Luis Gómez Ferrer de Couto Founder of PiPo e2H Blog: http://blog.e2h.net Si encuentras que esta o cualquier otra respuesta fue de utilidad, por favor da el voto. Gracias. If you find this or any other answer useful, please consider awarding points. Thank you.
0 Kudos