Remote users who are assigned to role with read or write access to Controller, Roles, Tenants, and User objects in a non-admin tenant will not be able to login. 

Avi Load balancer 30.x versions.

Correct the role to not have access to Controller, Roles, Tenants, and User objects. 

Such roles should be edited to have No Access for Controller, Roles, Tenants and User objects. 

This change is highlighted under the Key Changes in 30.1.1 section in the release notes

https://techdocs.broadcom.com/us/en/vmware-security-load-balancing/avi-load-balancer/avi-load-balancer/30-1/vmware-avi-load-balancer-release-notes/nsx-advanced-load-balancer-30-1-x-release-notes.html