Authenticate to the workload supervisor using vcf cli fails.
search cancel

Authenticate to the workload supervisor using vcf cli fails.

book

Article ID: 438484

calendar_today

Updated On:

Products

VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

The Supervisor Control Plane DNS Name was changed as per the documentaiton:

  • The supervisor redirect URI in "Supervisor>>Configure>>Identity Providers" was updated with FQDN.
  • The supervisor redirect URI in OIDC configuration in VCFA was not changed and still have IP.
  • After providing valid credentials, the page is redirected to failed login page.
  • Changing or adding new redirect URI with FQDN in VCFA Is not updating the entry and keep IP in the URI.

Environment

VCF 9.0.x
VCF 9.1

Resolution

Workaround:

  • Navigate to VCF Automation >> Provider Management >> OIDC Services.
  • Locate Supervisor entry and update/replace the redirect URI temporary with any URI, -  VCFA URL can be used for example and save.
  • Update supervisor redirect URI again in the same location but this time with correct redirect URI taken from vCenter Supervisor:
     https://<Supervisor FQDN>/wcp/pinniped/callback

Additional Information

The fix is planned in a future VCFA release.

Powered by Wolken Software