Integrating Aria Operations for Logs in Aria Operations using an Active Directory AD account fails with invalid credential
Article ID: 378246
Updated On:
Products
VMware Aria Suite
Issue/Introduction
- Integrating Aria Operations for Logs adapter in Aria Operations is successful when using the local admin account.
- Integrating using an AD account fails with invalid credentials error bad username or password.
- Even though you can successfully login directly to Aria Operations for Logs with the same AD account details.
- The Aria Operations for Logs runtime.log may contain the following error when attempting to validate the credentials.
- ValidationFailure{failureMessage='size must be between 5 and 100', violationPath='class com.vmware.ops.api.model.auth.UsernamePassword; Property: password'}
- The Aria Operations for Logs ui_runtime.log may contain:
- [2024-05-28 09:53:30.595+0000] ["https-openssl-apr-443-exec-5"/XX.XX.XX.XXX INFO] [com.vmware.loginsight.web.actions.misc.LoggerActionBean] [Submit form response {"succ":false,"validationErrors":[{"message":
"Unable to validate Active Directory credentials. Please check your Active Directory DNS name, port, and SSL settings as well as your username and password.","detailMessage":"AuthenticationException: Invalid
or untrusted domain 'XXX.XXX.XXX'.. See logs for details","fieldName":"adVerification","fieldNameStripped":"adVerification","fieldVal":null}],"errMsg":"Validation failed"}]
- [2024-05-28 09:53:30.595+0000] ["https-openssl-apr-443-exec-5"/XX.XX.XX.XXX INFO] [com.vmware.loginsight.web.actions.misc.LoggerActionBean] [Submit form response {"succ":false,"validationErrors":[{"message":
- Aria Operations adapter logs may show:
- 2024-08-28T09:40:32,447+0000 ERROR [Collector worker thread 3] (917) com.vmware.loginsight.adapter.LogInsightAdapter.onCollect - Authentication failed. Invalid credentials.
org.springframework.web.client.HttpServerErrorException$InternalServerError: 500 Internal Server Error: "{"errorMessage":"Internal error occurred during request processing."}" - 024-08-28T09:47:40,827+0000 ERROR [TasksManager-TaskHandler-184] (917) com.vmware.loginsight.adapter.LogInsightAdapter.onConfigure - onConfigure fails.java.lang.NullPointerException
- 2024-08-28T09:40:32,447+0000 ERROR [Collector worker thread 3] (917) com.vmware.loginsight.adapter.LogInsightAdapter.onCollect - Authentication failed. Invalid credentials.
Environment
Aria Operations 8.18
Aria Operations for Logs 8.18
Cause
- The AD account is created with uppercase USERNAME as the User Principal Name (UPN) and lowercase username as the 'Username'
- AD authentication will accept the username in any format and does not differentiate between uppercase or lowercase
- But the Aria Operations for Logs management pack integration in Aria Operations is expecting whatever is configured as the UPN in AD to be used for the integration.
Resolution
- Configure the Operations for Logs management pack in Aria Operations using the UPN of the AD account.
Feedback
Yes
No
Powered by
