When attempting to enable or reconfigure Single Sign-On (SSO) for a VCF Automation instance via VCF Operations (Fleet Management), the process fails. Users observe the following symptoms:

• The error message: "Failed to create auth source for management Component VCF_AUTOMATION" appears in the UI.
• In the vcops-bridge.log, the following error codes are present:
• VCD_50259: "A non-vIDB OIDC IDP has already been configured for System org"
• VCD_50272: "No vIDB registration information"
• Users from Active Directory (AD) are unable to access the VCF Automation appliance via SSO.

To resolve this issue, manually remove the conflicting OIDC configuration from VCF Automation before attempting to enable SSO in VCF Operations.
Step 1: Clean up existing OIDC Users

• Log in to the VCF Automation appliance using provider or administrative credentials.
• Navigate to Access Control.
• Identify and remove any users or unassign all service roles associated with the existing OpenID Connect Identity Provider.

Step 2: Delete the OIDC Identity Provider

• In VCF Automation, navigate to Administer > Connections > Identity Providers.
• Select the existing OpenID Connect provider.
• Click Delete.

Step 3: Enable VCF SSO

• Log in to VCF Operations.
• Navigate to Fleet Management > Identity & Access > VCF Management > Automation Appliance.
• Click Enable Single Sign-On.
• Verify success by importing an AD user or group and testing the SSO login.