Password operations for service account user are failing in SDDC Manager with error: Client received SOAP Fault from server: Invalid credentials Please see the server log to find more detail regarding exact cause of the failure.
Article ID: 338941
Updated On:
Products
Issue/Introduction
- Password operations for service account user such as remediate or rotate are failing in SDDC Manager, checking operationmanager.log:
Client received SOAP Fault from server: Invalid credentials Please see the server log to find more detail regarding exact cause of the failure.
2023-07-06T13:12:27.660+0000 INFO [vcf_om,c9ee0c76d2b7f48b,e3a4] [c.v.v.s.c.i.SecurityTokenServiceImpl$RequestResponseProcessor,om-exec-27] Provided credentials are not valid.
2023-07-06T13:12:27.660+0000 ERROR [vcf_om,c9ee0c76d2b7f48b,e3a4] [c.v.v.p.update.changers.SSOChanger,om-exec-27] Admin client not available, exception
com.vmware.evo.sddc.common.services.psc.exception.AuthenticationFailedException: Unable to obtain Security Token Service from SSO 'vCENTER_FQDN' as provided credentials are invalid
Environment
VMware Cloud foundation 5.x
Resolution
1. Browse to vCENTER UI and log in using [email protected]
2. Navigate to Administration >> Single Sign On >> Users and Groups >> Select Users Tab >> Choose vsphere.local Domain from the list >> Select that service-account User >> Click EDIT >> Type new Password with confirm Password and SAVE it.
3. Remediate new password in SDDC's password management tab.
4. New password operations should work successfully afterwards.
Additional Information
SDDC may not be able to automatically rotate service account password at the time of password expiry.
Feedback
