'A general system error occurred: Failed to register VRMS' due to missing vpxd solution user under Administrators group.

Products

VMware vCenter Server

Issue/Introduction

You are unable to Reconfigure vSphere Replication and receive below error on vRMS:

A general system error occurred: Failed to register VRMS.
Operation ID: edc0c82c-6e8d-4bc2-9aba-6cf53cc25105

*************************************************************************************************************************************************************************************

On the vCenter server:

lookupserver-default.log:
[2024-11-27T12:20:07.818Z pool-2-thread-43 INFO com.vmware.vim.lookup.vlsi.ServiceRegistrationImpl] User: <Anonymous> attempted to get not existing service with ID: 9679xxxx-xxxx-xxxx-xxxx-xxxxxxxxxx_.vmware.vcHms
[2024-11-27T12:20:08.959Z pool-2-thread-31 INFO com.vmware.vim.lookup.vlsi.VlsiSecurityChecker] Operation create is not permitted for user {Name: xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx, Domain: vsphere.local}
[2024-11-27T12:20:08.960Z pool-2-thread-31 INFO com.vmware.identity.token.impl.SamlTokenImpl] SAML token for SubjectNameId [[email protected], format=http://schemas.xmlsoap.org/claims/UPN] successfully parsed from Element
[2024-11-27T12:20:08.962Z pool-2-thread-31 INFO com.vmware.vim.lookup.vlsi.VlsiSecurityChecker] Operation create is not permitted for user {Name: vpxd-xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx, Domain: vsphere.local}

vpxd.log:
2024-11-27T12:20:09.011Z info vpxd[06831] [Originator@6876 sub=vmomi.soapStub[0] opID=5109a3a2] SOAP request returned HTTP failure; <<cs p:00007f457c004e30, TCP:localhost:1080>, /lookupservice/sdk>, method: create; code: 500(Internal Server Error); fault: (vmodl.fault.SecurityError) {
--> faultCause = (vmodl.MethodFault) null,
--> faultMessage = <unset>
--> msg = "Received SOAP response fault from [<<cs p:00007f457c004e30, TCP:localhost:1080>, /lookupservice/sdk>]: create
--> "
--> }
2024-11-27T12:20:09.011Z warning vpxd[06831] [Originator@6876 sub=MoExtensionMgr opID=5109a3a2] Failed to create LS service registration; id: 9679FD02-086D-4481-B347-7DA6EABADD4C_com.vmware.vcHms, spec: (lookup.ServiceRegistration.CreateSpec) {
--> serviceVersion = "9.0.2.17642",
--> vendorNameResourceKey = <unset>,
--> vendorNameDefault = <unset>,
--> vendorProductInfoResourceKey = <unset>,
--> vendorProductInfoDefault = <unset>,
--> serviceEndpoints = (lookup.ServiceRegistration.Endpoint) [
--> (lookup.ServiceRegistration.Endpoint) {
--> url = "https://VRA_fqdn:5480/configureserver/health/hms",
--> endpointType = (lookup.ServiceRegistration.EndpointType) {
--> protocol = "rest",
--> type = "com.vmware.cis.common.healthstatus"
--> },
--> sslTrust = <unset>,
--> endpointAttributes = <unset>
--> },
--> (lookup.ServiceRegistration.Endpoint) {
--> url = "https://VC_fqdn:443/catalog/com.vmware.vcHms_catalog.zip",
--> endpointType = (lookup.ServiceRegistration.EndpointType) {
--> protocol = "https",
--> type = "com.vmware.cis.common.resourcebundle"
--> },
--> sslTrust = <unset>,
--> endpointAttributes = (lookup.ServiceRegistration.Attribute) [
--> (lookup.ServiceRegistration.Attribute) {
--> key = "com.vmware.cis.common.resourcebundle.basename",
--> value = "cis.vcextension.com_vmware_vcHms.ResourceBundle"
--> }
--> ]
--> }
--> ],
--> serviceAttributes = <unset>,
--> serviceNameResourceKey = "com.vmware.vcHms.label",
--> serviceNameDefault = <unset>,
--> serviceDescriptionResourceKey = "com.vmware.vcHms.summary",
--> serviceDescriptionDefault = <unset>,
--> ownerId = "[email protected]",
--> serviceType = (lookup.ServiceRegistration.ServiceType) {
--> product = "com.vmware.cis",
--> type = "com.vmware.vcHms"
--> },
--> nodeId = <unset>
--> }, N5Vmomi5Fault13SecurityError9ExceptionE(Fault cause: vmodl.fault.SecurityError
--> )

******************************************************************************************************************************************************************************

Logs on the VRA appliance:

drconfig.log:

--> vSphere Replication Appliance configuration error:vCenter Server extension configuration problem.
--> Details: Unable to register extension in vCenter Server.
--> [ msgId: com.vmware.vr.config.ext_config_failure; value: null; errorStacktrace : com.vmware.jvsl.cfg.ConfigException: Internal error.
--> at com.vmware.jvsl.cfg.RegisterExtensionCommand.execute(RegisterExtensionCommand.java:154)
--> at com.vmware.hms.config.helper.VcHelper.registerExtension(VcHelper.java:280)
--> at com.vmware.hms.config.VrConfig.expressSetup(VrConfig.java:364)
--> at com.vmware.hms.config.cli.command.ExpressSetup.run(ExpressSetup.java:59)
--> at com.vmware.hms.config.cli.command.CommandBase.run(CommandBase.java:347)
--> at com.vmware.hms.config.cli.App.run(App.java:146)
--> at com.vmware.hms.config.cli.App.main(App.java:206)
--> Caused by: (vmodl.fault.SecurityError) {
--> faultCause = null,
--> faultMessage = null

Environment

VMware vCenter Server Version 8.x
vSphere Replication 9.x

Cause

The vpxd solution user has been missing from the Administrators group in the vmdird.

Resolution

1.On the HTML client:

To check if the vpxd user is in the Administrators group, log in to vCenter, navigate to Administration -> Users and Groups, find and click on Administrators, and see if the vpxd user is a member.

2.Log in to vCenter via SSH

If the vpxd user is not a member of the Administrators group, log in to vCenter via SSH and run the following command to add it:

/usr/lib/vmware-vmafd/bin/dir-cli group modify --name Administrators --add vpxd-xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx

Note: You can add the vpxd-xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx to Administrators group from the GUI as well.

Sample output:

3.Reconfigure vSphere Replication.