VMware Identity Broker (vIDB) Patching Fails with Error LCMVMSP10039 Due to SFTP Configuration or Credential Issues
search cancel

VMware Identity Broker (vIDB) Patching Fails with Error LCMVMSP10039 Due to SFTP Configuration or Credential Issues

book

Article ID: 433174

calendar_today

Updated On:

Products

VCF Operations

Issue/Introduction

When patching VMware Identity Broker (vIDB) or Automation components to version 9.0.x, the process fails during the backup phase with the following error in the UI:

Error Code: LCMVMSP10039
Message: Backup of application failed. The SFTP configuration has not been set up to perform the backup. Please configure the SFTP settings and retry the operation.

The status for component VIPs may show as FAILEDRetryRefresh.

Environment

VCF Operations 9.0.x

Cause

This issue occurs due to an invalid SFTP configuration. Common causes include:

  1. Unsupported Directory: The /tmp folder is used as the root backup directory. This fails because /tmp lacks the exec attribute and is not persistent across reboots.
  2. Unsupported Special Characters: The SFTP password contains unsupported characters, such as an exclamation point (!). Only ~@#%^,./ are currently allowed Special Character Support.
  3. Missing Credential Context: The User Name field in the Credential Manager was left empty. While the UI may allow saving an alias without it, the backup service requires an explicit user mapping.
  4. Permission Restrictions: The SFTP user lacks execute (x) permissions on parent directories (e.g., /backups), preventing traversal to the specific backup path.

Resolution

Follow these steps to validate and fix the SFTP configuration:

1. Validate Environmental Constraints Log in to the SFTP server and run the following commands to check for restrictions:

  • Check for noexec flags: findmnt -T /your/backup/path
  • Check security contexts: ls -ldZ /your/backup/path
  • Verify parent permissions: Ensure the user has x rights on all parent folders: ls -ld /parent_directory

2. Update SFTP Settings

  1. Navigate to Fleet Management > Lifecycle > Settings > SFTP Settings.
  2. Ensure the Backup Directory is a persistent path (e.g., /backup).
  3. Verify the folder exists on the SFTP endpoint with full read/write/execute permissions for the user.

3. Correct Credential Profiles

  1. Go to the Credential Manager.
  2. Edit the SFTP password alias.
  3. User Name: Ensure the username is explicitly typed in the User Name field.
  4. Password: Reset the password to one that excludes unsupported characters like !.

4. Final Verification Save the settings and ensure the configuration task completes successfully before retrying the patch operation.

vIDB Patching Fails

Powered by Wolken Software