I want to login to Ops Manager using an alternative URL or hostname or IP address
search cancel

I want to login to Ops Manager using an alternative URL or hostname or IP address

book

Article ID: 430442

calendar_today

Updated On:

Products

VMware Tanzu Kubernetes Grid Integrated Edition VMware Tanzu Platform Core VMware Tanzu Application Service

Issue/Introduction

Customer just deployed a new environment and is getting an error message when trying to call an alternate URL for the opsmanager:

Invalid redirect https://hostname-alias.example.com/auth/cloudfoundry/callback did not match one of the registered values.

Environment

Valid for any Tanzu environment which uses Ops Manager.

Resolution

redirect_uri attribute can be modified in UAA to enable logins via multiple entry point URLs.

In the instructions below, "hostname.example.com" is the original Ops Manager DNS name, and alias.example.com is the alternative name (could be a CNAME DNS alias or an IP address). 

uaac target https://hostname.example.com/uaa/ --skip-ssl-validation
uaac token owner get

check info for opsman client

uaac client get opsman

scope: opsman.restricted_view opsman.admin scim.me opsman.full_control opsman.full_view opsman.restricted_control uaa.admin clients.admin
  client_id: opsman
  resource_ids: none
  authorized_grant_types: password authorization_code implicit refresh_token
  redirect_uri: https://hostname.example.com:443 https://hostname.example.com:443/**
  autoapprove: true
  access_token_validity: 43200
  refresh_token_validity: 172800
  authorities: uaa.resource
  name: Ops Manager
  required_user_groups: 
  lastmodified: 1762977279981
  id: opsman

 

verify redirect-uri, update if necessary

uaac client update opsman --redirect-uri "https://alias.example.com:443,https://alias.example.com:443/**,https://hostname.example.com:443,https://hostname.example.com:443/**"
Powered by Wolken Software