Validation of SAML bearer token failed: 12 error received when enabling Credential-Less service discovery for RHEL 8 or 9
search cancel

Validation of SAML bearer token failed: 12 error received when enabling Credential-Less service discovery for RHEL 8 or 9

book

Article ID: 399784

calendar_today

Updated On:

Products

VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

  • When trying to enable Credential-Less service discovery in Aria Operations of a Red Hat Enterprise Linux VM (v8 or v9), an error is seen in the VMtools logs. 
    • [ warning] [VGAuthService] ServiceVerifyAndCheckTrustCertChainForSubject: no mapping entries or specified userName
[   debug] [VGAuthService] SAML_VerifyBearerTokenAndChain: ServiceVerifyAndCheckTrustCertChainForSubject() returned 12
[ message] [VGAuthService] Returning error message '<?xml version="1.0" encoding="UTF-8" ?><reply><sequenceNumber>1</sequenceNumber><errorCode>12</errorCode><errorMsg>validateSamlToken failed</errorMsg></reply>'

Environment

  • Aria Operations 8.18.x
  • VMtools 12.3.8

Cause

Credential-less service discovery requires the installation of 2 other packages which are not installed by default.

Resolution

The 2 packages required are

  • open-vm-tools-salt-minion
  • open-vm-tools-sdmp
Powered by Wolken Software