Symptoms:
The authentication server returned an unexpected error: ns0:RequestFailed: Internal Error while creating SAML 2.0 Token. The error may be caused by a malfunctioning identity source.
unknown user or bad password
imsTrace.log
file (located at C:\Program Files\VMware\Infrastructure\SSOServer\logs\) contains entries similar to:To resolve this issue, review the configured Identity Sources for any incorrect entries. If all identity Sources are correct, remove the the localOS identity source from vCenter Server Single Sign-On (SSO).
Notes:
To remove the localOS identity source from the SSO configuration:
To be alerted when this document is updated, click the Subscribe to Article link in the Actions box
Unable to log in to vCenter Server with the vSphere Client or vSphere Web Client
vCenter Server not listed in the inventory after installing or upgrading to vSphere 5.5 / 6.0