from apc:

As far as I understand logging in and out of vSphere should not reset the fastpass target from the vifptaget command. As far as I have researched with my colleagues here as well I have gotten the same response. I'll go and double check myself with the product manager regarding this just to be positive.

I think he meant vMA not vSphere.

lamw

I guess I don't understand what is the point of fastpath and the vma holding credentials if it can't use them because I have to be available to reenter authentication all the time.  To me a management vm is something where you can set it up to perform management task maybe based upon results from a command you run every so often or something.  If I have to be available though to run these commands what really is the point of the vm itself?  Why wouldn't just using ssh into the host when I needed to do something just work.

I would never be able to automate a task with this if required if FP doesn't actually authenticate.  I guess I'm confused by what you are saying.  It just doesn't sound right compared to what I have read.  Nor is it what vmware or APC has confirmed yet either with me.  Not that the vmware tech was totally up on the understanding of the vMA.

Does anyone else have any details to help with why this is not working?  I'm sure it is that the shutdown can't be run against the host because fp is not working.  But how is it that tons of users are successfully using this method and it does not require reauthentication?

lawson23,

Let me try to explain how vi-fastpass actually works.

vi-fastpass is mainly to provide a way to easily interact with the remote CLI without having to re-enter your credentials each time you run a command to provide a better user experience simliar to that of running commands on the classic ESX Service Console. As you know, any vCLI command you run, you will need to specify the server which can be a vCenter or ESX(i) host, username and password. vi-fastpass allows you to add a host to the vi-fastpass DB (using vifp) and when you initialize the target (vifttarget), you can run any of the vCLI or vSphere SDK for Perl scripts without having to re-authenicate. This workflow is targetted only for interactive sessions using vifptarget command each time you wish to initialize a specific target. It's not meant to be used directly by an agent or service account as you were expecting.

Now having said that, vi-fastpass does have Java and Perl library which is listed in the documentation (http://pubs.vmware.com/vsphere-50/index.jsp?topic=/com.vmware.vma.doc_50/vima_ref.5.2.html) where you can programmatically create your own tool/agent or 3rd party could leverage the library to build their own tools/agents to use the vi-fastpass functionality such as a monitoring or UPS agent.

So I would check with PCNS and see how they've implemented their UPS agent with vMA's vi-fastpass and what configuration they're expecting you to have as they should be able to help troubleshoot your issue. vifptarget utility is designed for interactive sessions only