vIDM Login shows "Request Failed. Please contact your IT administrator" error and 502 Bad Gateway due to Certificate Mismatch
Article ID: 429808
Updated On:
Products
Issue/Introduction
-
After entering credentials at the VMware Identity Manager (vIDM) login page, users receive a "Request Failed. Please contact your IT administrator" error message.
-
Browser Developer Tools (Network Tab) show a 502 Bad Gateway error.
-
Aria Suite Lifecycle Manager (vRSLCM) Inventory Sync fails for the vIDM environment.
Environment
VMware Identity Manager 3.3.7
Aria Suite Lifecycle Manger 8.x
Cause
The issue is caused by a Certificate Thumbprint Mismatch. The NLB is presenting a different certificate than what is configured on the backend vIDM nodes. When the NLB attempts to pass the encrypted traffic to the nodes, the trust handshake fails, resulting in a 502 Bad Gateway error. vRSLCM also fails to sync because the environment state contradicts the certificate data stored in its database.
Resolution
To resolve this, you must align the certificates across the load balancer and the identity nodes to restore the Chain of Trust.
-
Deploy Unified Certificate to NLB: Install the new CA-signed certificate on your Network Load Balancer.
-
Trigger Inventory Sync: Run a Inventory Sync in vRSLCM
-
Replace vIDM Certificates: Use the vRSLCM "Replace Certificate" workflow to push the same certificate used on the NLB to all vIDM nodes.
-
Verify Authentication: Test the login via the vIDM VIP to ensure the 502 error is cleared.
Additional Information
For detailed, step-by-step instructions on performing the certificate replacement via vRSLCM, please refer to:
Feedback
