NSX-ALB unable to authenticate with vCenter Cloud due to "Invalid Credentials"
Article ID: 319415
Updated On:
Products
Issue/Introduction
- In the NSX-ALB UI under "Infrastructure > Cloud" you will see the below error:
ServerFaultCode: Cannot complete login due to an incorrect user name or password.
- The AKO logs will show the below error:
# kubectl logs -n vmware-system-ako vmware-system-ako-ako-controller-manager-5bb7f89765-sfdfl
WARN status/statefulset_status.go:62 Error in getting ako statefulset: statefulsets.apps "ako" is forbidden: User "system:serviceaccount:vmware-system-ako:default" cannot get resource "statefulsets" in API group "apps" in the namespace "vmware-system-ako"
WARN lib/avi_api.go:68 msg: Unable to fetch data from uri /api/ipamdnsproviderprofiledomainlist?cloud_uuid=cloud-f9e4b800-db5a-4aef-b41a-1554ed1dc9a2 Encountered an error on GET request to URL https://##.##.##.##:443//api/ipamdnsproviderprofiledomainlist?cloud_uuid=cloud-##: HTTP code: 400; error from Avi: map[error:Ipam Type invalid or configuration not found in Avi]
- NSX-ALB is running version "22.1.4" or older.
Environment
- NSX Advanced Load Balancer 20.1.x
- vSphere 7.0 with Tanzu
Cause
This is a known issue identified as "AV-182827" by the Engineering Team.
Resolution
The GUI issue is fixed in the following versions: 22.1.3-2p8, 22.1.4-2p1
Workaround:
The workaround to fix the issue is manually entering the password from the AVI CLI, please follow the steps below:
1. Log into the AVI Controller through SSH and enable the AVI console by typing "shell".
2. Configure the Cloud by running the below commands:
configure cloud Default-Cloud
vcenter_configuration
3. Enter the password to authenticate with the vCenter Server Appliance:
password #####
4. Save the configurations done:
save
save
NOTE: You need to run the "save" commands twice, otherwise the password won't be saved.
Additional Information
Feedback
