Failed to access Aria Operations for Logs portal using web apps on vIDM user portal
search cancel

Failed to access Aria Operations for Logs portal using web apps on vIDM user portal

book

Article ID: 414600

calendar_today

Updated On:

Products

VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

  • When attempting to access Aria Operations for logs using the vIDM web App from : vIDM User Portal > Aria Operations for Logs Web App > Fails to log user into Aria Ops for Logs portal with error
    "An error occurred during OAuth2 operation. Please contact your administrator to resolve the issue.
    { "error": "invalid_request", "error_description": "Invalid client" }"
  • Client token verification steps: 
    • View the Web App Settings in : vIDM Administrator Portal > Click the dropdown for Catalog > Web Apps > view the Web App used for the application : Note the client ID references in the Target Url : https://YOUR.IDENTITYMANAGER.FQDN/SAAS/auth/oauth2/authorize?response_type=code&client_id=<YOUR_Client_ID>_auth_grant&scope=openid+user+email&redirect_uri=http://YOUR.AOpsLogs_FQDN/login
    • Attempt to search and validate the status of the client added to vIDM : vIDM Administrator Portal > Click the dropdown for Catalog > Settings > Remote App Access : Search a client with the client ID from above and is valid.
    • Additionally, capture the client ID from the target URL from the developer tools when attempting to log into the Aria Operations for Logs portal using option "Login with vIDM" and validate if the client IDs match or not. 

Environment

  • VMware Identity Manager 3.x
  • Aria Operations for Logs 8.x

Cause

  • The Client ID being used in the target url of the Web App is stale/ no longer listed as a valid client reference in the vIDM.

Resolution

  • Capture the client ID from the target URL from the developer tools when attempting to log into the Aria Operations for Logs portal using option "Login with vIDM"
    • Open the Aria Operations for Logs log in Page. 
    • Open the developer tools. Switch over to the networking tab.
    • Now click on Log in using Identity Manger and Enter the user credentials. 
    • Post Successful log in, look for a Authorize or a Login API call and fetch the target url used.
  • Edit the the Web App Settings in :
    • vIDM Administrator Portal > Click the dropdown for Catalog > Web Apps > view the Web App used for the application
    • Set the client ID referenced in the Target Url to the client ID used above. 
    • Save the configurations.
  • Attempt to launch to the Aria Ops for Logs portal using the Web App on the vIDM User Portal. 
Powered by Wolken Software