Symptoms
Log in to the vCenter Server UI fails with the following error: "[500] An error occurred while fetching identity providers. Try again. If problem persists, contact your administrator."
In environments using Enhanced Linked Mode (ELM), this error may impact all linked vCenter nodes.
The following entries appear in /var/log/vmware/vsphere_ui/logs/vsphere_client_virgo.log: [ERROR] http-nio-5090-exec-4 com.vmware.vsphere.client.security.oauth2.LoginRequestHandler An error occurred while fetching providers com.vmware.vapi.std.errors.Unauthenticated
VMware vCenter Server 8.x
VMware vCenter Server 7.x
Enhanced Linked Mode (ELM)
Expiration of the Security Token Service (STS) signing certificate, Machine_SSL certificate, or Solution User certificates. In ELM environments, expiration on one node can disrupt the identity provider service across the entire SSO domain.
for i in $(/usr/lib/vmware-vmafd/bin/vecs-cli store list); do echo STORE $i; /usr/lib/vmware-vmafd/bin/vecs-cli entry list --store $i --text | egrep "Alias|Not After"; doneservice-control --stop --all && service-control --start --all