Installation of a Plugin fails in the vCenter
Article ID: 381780
Updated On:
Products
Issue/Introduction
When attempting to installing a plugin in a vCenter, errors similar to below appear in vCenter UI:
Cannot authenticate using the provided session parameters.
Environment
On vCenter, lookupserver-default.log contains entries similar to:
| [2023-10-19T13:58:07.490Z pool-2-thread-31 INFO com.vmware.vim.lookup.vlsi.VlsiSecurityChecker] Operation create is not permitted for user {Name: vpxd-UUID, Domain: correct-domain.local} |
Given the vpxd username/domain above, executing the following command yields output where domain part in the configuration does not match the domain part reported in lookupserver-default.log:
|
$ less /etc/vmware-vpx/vpxd.cfg | grep -i "vpxd"
<threadNamePrefix>vpxd</threadNamePrefix> <vpxd> <name>vpxd-UUID@some-domain.local</name> <storeName>vpxd</storeName> </vpxd>
|
Cause
The issue can be triggered when SSO is repointed and vpxd.cfg does not get updated.
Resolution
Edit the vpxd.cfg file to contain the correct vxpd user and domain parts:
|
SSH to the affected vCenter using root credentials. 1. Take a backup of the current vpxd.cfg file: cp /etc/vmware-vpx/vpxd.cfg /var/core/vpxd.cfg.bak
2. Manually stop the VPXD service: service-control --stop vmware-vpxd
3. Modify the vpxd.cfg: vi /etc/vmware-vpx/vpxd.cfg
From: <solutionUser> <certificate>/etc/vmware-vpx/ssl/vcsoluser.crt</certificate> <name>vpxd-UUID@some-domain.local</name> <privateKey>/etc/vmware-vpx/ssl/vcsoluser.key</privateKey> </solutionUser>
To: <solutionUser> <certificate>/etc/vmware-vpx/ssl/vcsoluser.crt</certificate> <name>vpxd-UUID@correct-domain.local</name> <privateKey>/etc/vmware-vpx/ssl/vcsoluser.key</privateKey> </solutionUser>
4. Manually start the vpxd service: service-control --start vmware-vpxd
5. Attempt plugin installation. |
Feedback
