When navigating to vCenter UI > Menu > Password Management in VMware Cloud Foundation (VCF) 9.0.x, administrators may encounter the following symptoms:

• The interface fails to load and displays the error message:

  Failed to load password management data.

• A secondary error may appear:

  Failed to load PSC data

• Browser Developer Tools (Network tab) show HTTP 400 Bad Request responses from the following VCF plugin API endpoints:

  /plugins/com.vmware.vcf.client.../plugin/api/v1/credentials/ui

  /plugins/com.vmware.vcf.client.../plugin/api/v1/pscs

VMware SDDC Manager 9.x
VMware vCenter Server 9.x

This issue occurs when the active vSphere Client session has an insufficient permission context or an invalid authorization state. Even if the user appears to be logged in, the specific API calls required to retrieve credential and Platform Services Controller (PSC) metadata may be rejected if the session token does not carry the necessary administrative roles or if the session has become stale.

To resolve this issue, perform a clean re-authentication with an account possessing full administrative privileges:

1. Log out of the current vSphere Client session.
2. Clear the browser cache and cookies to ensure all stale session tokens and site data are removed.
3. Log in to the vCenter UI using an account with high-level administrative permissions (e.g., [email protected] or a user explicitly assigned the CloudAdmin role).
4. Navigate back to Password Management to verify the data loads successfully.

If the issue persists after re-authentication with an administrator account, the HTTP 400 error may be caused by the SAML token size exceeding the default nginx buffer configuration. In such cases, refer to the following article for steps to increase the buffer size on the SDDC Manager:

Unassigned Hosts and Network Pools not visible under the Global Inventory List in the Management vCenter when logged in with VCF SSO user