Error when logging into vIDM with AD user 'Your username or Password is incorrect'

search cancel

book

calendar_today

VCF Operations/Automation (formerly VMware Aria Suite)

Error when attempting to log into vIDM portal using AD user.
"your username or password is incorrect"
The correct password is being used to login.
/opt/vmware/horizon/workspace/logs/connector.log contains logs similar to the ones shown below
log: INFO : com. vmware.horizon. directory. ldap. LdapDirectoryService - Password-based authentication: - BEGIN
log: INFO : com. vmware.horizon.directory.ldap. LdapConnector - Starting LDAP Query: Host: ldaps://<ad_server>: 636 PageSize - 1000 SearchDN - distinguishedName=<distinguish name of the ad user> SearchFilter - (& (objectCategory=person) (sAMAccountName=<ad_username>) ) Scope - 2
log: INFO : com. vmware.horizon. directory. ldap. LdapConnector - Query Completed for SearchDN - <Base DN structure> SearchFilter - (& (objectCon) (sAMAccountName / Username = <SAMAccountName / username>)
log: INFO : com. vmware. horizon. directory. ldap. LdapDirectoryService - User <ad_username@domain> not found under base DN <Base DN structure>

VMware Identity Manager 3.x

The AD user account is not found within the specified Base DN (Distinguished Name) in the LDAP (AD) configuration (Sync) of vIDM.

Validate the AD directory Structure and the location of the user - validate using the DistinguishedName of the user.
Validate the Base DN and the scope of this Base DN in the AD configuration on the vIDM's directory settings.
Modify the BASE DN specified on the LDAP (AD) configurations on vIDM to broaden the scope of the search to include directory folder where the required user is present.
Retry to sync the user.
(Navigate to Sync Settings > Save and Sync > validate that the user addition is listed in the changes and / or not marked as skipped due to missing attributes)
Once successful, attempt to validate user login.

Also Refer:

thumb_up Yes

thumb_down No