• A VMware Cloud Director Availability on-premise appliance has been deployed.
• When configuring the lookup service to point to a VMC on AWS SDDC, an error similar to the following occurs:
  
  vCenter user does not have the needed permissions to complete the operation
  
  
• In the /opt/vmware/h4/replicator/log/replicator.log , errors similar to the following are seen:
  
  

  2025-01-13 19:39:51.908 ERROR - [UI-########-####-####-####-############-####-##] [https-jsse-nio-8440-exec-10] c.v.h.c.c.error.ExceptionAdvisorBase     : A POST request from root[10.87.2.104] to /config/lookup-service failed.

  com.vmware.h4.exceptions.common.NoPermissionsVcUserException: vCenter user does not have the needed permissions to complete the operation.
        at com.vmware.h4.common.service.BaseConfigService.validateSsoAdminCredentials(BaseConfigService.java:180)
....

Vmware Cloud Director Availability 4.x

There are limitations that prevent an on-premise appliance from being used directly with VMC on AWS. By design, only the provider installation of VMware Cloud Director Availability (vCDA) is supported for use with VMC on AWS SDDC environments for migrations (not protections). Initially, only migrations into the cloud were supported, but vCDA 4.6 introduced the ability to migrate back to the on-premise environment.

Deploy the provider installation of VMware Cloud Director Availability for use with the VMC on AWS SDDC, as detailed in the following document:

Migration to VMware Cloud Director service Guide

For additional information regarding replication and migration scenarios, please refer to the following document:

Replicating workloads