• SDDC Manager > Workload domain > Update page has the error
  
  

  Scheduling immediate update of bundle failed. Provided domain ID is invalid.
   
  Retrieving configuration updates failed. Unable to compute applicability for drift WorkspaceOneBrokerConfigDrift. Because configuration realized check failed on resources [xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx]. Please check logs and fix the failures of drift configuration realized checks. Then restart the service to trigger the configuration realized checks again and re-try the API. If this does not resolve the issue, please contact GSS.

   

• Error in /var/log/vmware/vcf/domainmanager/domainmanager.log
  
  

  yyyy-mm-ddThh:mm:ss DEBUG [vcf_dm,0adf714c25328f42,c2cb] [c.v.e.s.e.h.LocalizableRuntimeExceptionHandler,http-nio-127.0.0.1-7200-exec-5]  Handler Error Response: {"errorCode":"FAILED_TO_FETCH_APPLICABLE_DRIFTS_CONFIGURATION_REALIZED_CHECK_FAILED","arguments":["WorkspaceOneBrokerConfigDrift","[xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx]"],"message":"Unable to compute applicability for drift WorkspaceOneBrokerConfigDrift. Because configuration realized check failed on resources [xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx].","remediationMessage":"Please check logs and fix the failures of drift configuration realized checks. Then restart the service to trigger the configuration realized checks again and re-try the API. If this does not resolve the issue, please contact GSS.","referenceToken":"aaaaa"}
  yyyy-mm-ddThh:mm:ss ERROR [vcf_dm,618d6878dbc44085,4c2d] [c.v.v.c.o.a.ConfigDriftApiClient,dm-exec-7]  Failed to fetch drifts from owner service http://localhost/domainmanager
  com.vmware.cloud.foundation.rest.configreconciler.runtime.ApiException:
  
  yyyy-mm-ddThh:mm:ss ERROR [vcf_dm,0adf714c25328f42,c2cb] [c.v.e.s.e.h.LocalizableRuntimeExceptionHandler,http-nio-127.0.0.1-7200-exec-5]  [2A4MU] Unable to compute applicability for drift {0}. Because configuration realized check failed on resources {1}. Unable to compute applicability for drift WorkspaceOneBrokerConfigDrift. Because configuration realized check failed on resources [xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx].
  com.vmware.vcf.configreconciler.service.common.error.ConfigReconcilerException: Unable to compute applicability for drift WorkspaceOneBrokerConfigDrift. Because configuration realized check failed on resources [xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx].

   

• Error in vCenter /var/log/vmware/trustmanagement/trustmanagement-svcs.log
  
  

  yyyy-mm-ddThh:mm:ss [tomcat-exec-24 [] ERROR com.vmware.vcenter.trustmanagement.authbroker.BrokerClient  opId=] VMware Identity services unavailable
  yyyy-mm-ddThh:mm:ss [tomcat-exec-24 [] ERROR com.vmware.vcenter.trustmanagement.vapi.impl.AdminClientProviderImpl  opId=] Error getting Auth broker CUSTOMER tenant's admin client token info due to VMware Identity services unavailable
  com.vmware.vcenter.trustmanagement.authbroker.BrokerException: VMware Identity services unavailable
  
  Caused by: com.vmware.vcenter.trustmanagement.authbroker.BrokerClient$HttpStatusException: API request GET_CLIENT_CREDENTIALS_TOKEN failed with response code 503 (Service Unavailable)

VMware Cloud Foundation 5.x

vc-ws1a-broker service configuration files get lost during RDU upgrade which leaves the vc-ws1a-broker service in a broken state. The drift check failure is caused by the VMware Identity services being unavailable.