unable to login to TKGs guest cluster with error: "Login failed: invalid character '<' looking for beginning of value"
search cancel

unable to login to TKGs guest cluster with error: "Login failed: invalid character '<' looking for beginning of value"

book

Article ID: 400068

calendar_today

Updated On:

Products

Tanzu Kubernetes Runtime

Issue/Introduction

Attempting to login to a TKGs Guest Cluster from a jump box using a domain account incurs the following error

time="[timestamp]" level=error msg="Login failed: invalid character '<' looking for beginning of value"

Example with verbose logging

kubectl-vsphere login --vsphere-username <user@domain> --insecure-skip-tls-verify --server <Supervisor VIP> --tanzu-kubernetes-cluster-name <cluster name> --tanzu-kubernetes-cluster-namespace <cluster namespace> --verbose 10
time="[timestamp]" level=debug msg="User passed verbosity level: 10"
time="[timestamp]" level=debug msg="Setting verbosity level: 10"
time="[timestamp]" level=debug msg="Setting request timeout: "
time="[timestamp]" level=debug msg="login called as: C:\\dev\\bin\\userscripts\\kubectl-vsphere.exe login --vsphere-username <user@domain> --insecure-skip-tls-verify --server <Supervisor VIP> --tanzu-kubernetes-cluster-name <cluster name> --tanzu-kubernetes-cluster-namespace <cluster namespace> --verbose 10"
time="[timestamp]" level=debug msg="Creating wcp.Client for <Supervisor VIP>."
time="[timestamp]" level=info msg="Does not appear to be a vCenter or ESXi address."
time="[timestamp]" level=debug msg="Got response: \n"
time="[timestamp]" level=info msg="Using <user@domain> as username."
time="[timestamp]" level=debug msg="Env variable KUBECTL_VSPHERE_PASSWORD is present \n"
KUBECTL_VSPHERE_PASSWORD environment variable is not set. Please enter the password below
Password:
time="[timestamp]" level=debug msg="Got response: <html>\n<head><title>504 Gateway Time-out</title></head>\n<body>\n<center><h1>504 Gateway Time-out</h1></center>\n<hr><center>nginx/1.26.1</center>\n</body>\n</html>\n"

time="[timestamp]" level=error msg="Login failed: invalid character '<' looking for beginning of value"

Environment

vSphere 8.0 with Tanzu

Cause

Symptoms:

Cli output from vCenter shows connected to a domain but vCenter GUI shows did not join a domain

 

1. Check from cli

/opt/likewise/bin/domainjoin-cli query

 

2. Check from vCenter 

1. Use the vSphere Client to log in as administrator@your_domain_name to the vCenter Server instance.
2. From the vSphere Client menu, select Administration.
3. Select Single Sign OnConfiguration.
4. Click on the Identity Provider tab, and select Active Directory Domain as the identity provide type.

Resolution

If the cli output shows that vCenter is joined to a domain but the vCenter GUI does not you have two options:

1. Restart vCenter services

2. Reboot vCenter

Powered by Wolken Software