When attempting to configure VCF SSO (Single Sign-On) with Identity Broker for a vCenter component that is part of a Workload Domain managed by SDDC Manager (or Fleet Manager), the configuration may fail with the below error in the UI.

Error occurred while configuring the component for SSO. Check support logs under control panel for more details

In the vcops-bridge log in VCF operations under /storage/vcops/logs there is a certificate subject mismatch error similar to:

2026-04-29T07:15:41.438Z INFO  vcfops-bridge 2151075 [ops@4413 threadId="292653" threadName="TasksManager-TaskHandler-23"] [com.vmware.vcops.bridge.server.vidb.persistence.VidbAuthSourceService.updateAuthSource] - Updating the Auth source configuration AuthSourceConfig{vidbResourceId='########-####-####-########', clientId='null', vidbHostname='example.com', vcfInstanceId='########-####-####-########', vcfComponentId=########-####-####-########, componentHostname='example.com', errorMessage='java.lang.RuntimeException: Failed to execute request POST https://example.com/api/session with exception Host name 'IP-ADDRESS' does not match the certificate subject provided by the peer (CN=example.com, OU=example, O=example)', componentType=VCENTER, status=FAILED, createdAt=1777446937200, lastActiveTime=null, editable=true, updatedAt=0} 

VCF Operations 9.0.x

The vCenter is integrated twice in VCF Operations Integrations, once with its FQDN and again with its IP address.

1. Navigate to Administration > Integrations.
2. Identify the vCenter integrated via IP Address.
3. Select and Remove the IP-based integration