• Users attempting to log in with Active Directory (AD) credentials receive the error: "Incorrect username or password while local admin account login functions as expected.

• Under Management > Access Control, the following message appears when viewing or adding AD groups: "Unable to load Directory groups for user <username>. Please check if Active Directory is properly configured for the <LDAP>."

Aria Operations for Logs 8.x

Aria Operations for Logs requires a secure connection (LDAPS) or a verified trust relationship with the Active Directory Domain Controller. This issue occurs when:

1. The Active Directory server certificate has been renewed or changed.

2. The root or intermediate CA certificate is missing from the appliance's trust store.

3. The appliance is presented with a certificate it does not recognize, causing it to terminate the connection for security reasons.

To resolve this issue, the updated certificate must be manually trusted within the Aria Operations for Logs interface.

1. Login to Aria Operations for Logs and go to Configuration > Authentication > Active Directory
   
   
2. Click on Edit and provide the password.
   
   
3. Click Test Connection to verify that the connection works.
   
   
4. If the Active Directory server provides an untrusted SSL certificate, a dialog box appears with the details of the certificate. Click Accept to add the certificate to the truststores of all the nodes in the VMware Aria Operations for Logs cluster.
   If you click Cancel, the certificate is not added to the truststores and the connection with the Active Directory server fails. You must accept the certificate for a successful connection.
   
   
5. Click Save.

Attempt to log in using an AD user account and the user should be logged in successfully.