SSO Configuration Fails for VCF Automation Appliance
Article ID: 420836
Updated On:
Products
VCF Operations/Automation (formerly VMware Aria Suite)
Issue/Introduction
From VCF Operations > Fleet Management > Identity & Access > VCF Management > Automation Appliance, attempting to configure SSO for the VCF Automation Appliance fails, and the process returns the following error: "Failed to create auth source for management component VCF_AUTOMATION."
Environment
VCF Automation 9.0
VCF Identity Broker 9.0
VCF Operations 9.0
Cause
The SSO configuration for the VCF Automation Appliance is failing because the endpoint node (VCFA) is currently inaccessible, preventing the required communication for the setup process.
Resolution
- To successfully configure SSO for the VCF Automation Appliance, ensure that a VCF Identity Broker is deployed either embedded or as an external appliance.
- After deployment, configure the required identity provider (such as Active Directory or LDAP) through the VCF Automation Operations interface, and map the appropriate users and groups to roles to enable single sign-on. This configuration allows users to access VCF components with a single set of credentials.
- Verify that the VCF Automation Appliance (VCFA) is fully operational and that all associated pods are in a healthy, running state.
ssh to VCFA and run the commandkubectl get pods -A - Additionally, check Fleet Management > Lifecycle > Managed Components to confirm that all components are connected and reporting an OK status. If needed, perform an inventory sync to update connections and ensure all changes are reflected.
- Finally, confirm that the SSO Overview under Identity & Access has been configured correctly before reattempting the SSO setup and this should fix the issue.
Feedback
Yes
No
Powered by
