• After deploying VMware Aria Automation Orchestrator (formerly known as VMware vRealize Orchestrator) the UI spins and never loads

• The pods are running when executing the command kubectl get pods -n prelude
• The following errors may be present within /services-logs/prelude/vco-app/file-logs/vco-server-app.log

  2022-05-12T06:35:55.961Z ERROR vco [host='vco-app-86dffc684c-79ls5' thread='http-nio-8280-exec-3' user='-' org='-' trace='-'] {} com.vmware.o11n.web.SameTenantContextFilter - Could not retrieve IDP configuration for tenant 'vsphere.local'
  java.lang.IllegalStateException: Failed to create IdP configuration for tenant vsphere.local
  at com.vmware.o11n.authentication.http.idp.IdPMetadataSettingManager.getOrCreateIdPConfigurationIfNeeded(IdPMetadataSettingManager.java:73) ~[o11n-cafe-sdk-sso-8.4.2.jar:?]

The incorrect tenant has been selected when configuring the Authentication Provider.

1. Validate the current default tenant configured within vCenter running the following command:

curl -k https://ID1/websso/SAML2/Metadata/ | more

2. The output of this command will display the current default tenant within vCenter as the attribute for entityID.

entityID="https://ID1/websso/SAML2/Metadata/ID2">

Where:

• ID1: vCenter FQDN
• ID2: Default tenant

Example: vCenter vc1.autolab.local with the default tenant vsphere.local.

3. Login to Control Center using the root account: https://VRO_FQDN/vco-controlcenter and select the Configure Authentication Provider.

4. Update the default tenant to the value obtained on Step # 1 and click Save Changes.

5. Retry accessing VMware Aria Automation Orchestrator UI.
6. If required, restart VMware Aria Orchestrator by running /opt/scripts/deploy.sh.