After deleting SSO integration in VCF Operations 9.x , unable to login using SSO
search cancel

After deleting SSO integration in VCF Operations 9.x , unable to login using SSO

book

Article ID: 427277

calendar_today

Updated On:

Products

VCF Operations

Issue/Introduction

After deleting and subsequently re-creating the Single Sign-On (SSO) integration in VCF Operations 9.x, users are unable to log in using SSO credentials.

When attempting to authenticate via VCF Operations or vCenter, the UI displays the following error message: "Authentication was unsuccessful. Verify your credentials or contact your administrator if the issue persists."

Environment

VMware Cloud Foundation (VCF) Operations 9.x

Cause

Directory Search Attribute in the identity source configuration set incorrectly to sAMAccountName

Resolution

To resolve this issue, you must update the identity source configuration to use the correct search attribute.

  1. Log in to the VCF Operations admin UI using a local administrator account.

  2. Navigate to the Authentication Sources or SSO Configuration settings.

  3. Select the relevant Identity Source/SSO integration and click Edit.

  4. Locate the Directory Search Attribute field.

  5. Change the value from sAMAccountName to userPrincipalName.

  6. Save the configuration.

  7. Attempt to log in using an SSO account to verify the fix.

Additional Information

Configure a New VCF Single Sign-On for a VCF Instance

Adding Directories in VMware Cloud Foundation Identity

Powered by Wolken Software