When trying to add SSO SAML vCenter Identity source. test connection is successful but when we try to apply, we get Error:
Failed to setup SSO source, reason: Auth Exception occurred : 'Solution user detail' certificate is invalid - certificateException java.security.cert.CertificateExpiredException: NotAfter: Tue Mar 17 04:31:25 UTC 20xx
vcops-bridge.log
ERROR [ServerConnection on port 10000 Thread 1967] com.vmware.vcops.bridge.server.BridgeTracerAspect.processBridgeResult - Failed to setup SSO source, reason: Auth Exception occurred : 'Solution user detail' certificate is invalid - certificateException java.security.cert.CertificateExpiredException: NotAfter: Tue Mar 17 04:31:25 UTC 20xx
ERROR [ServerConnection on port 10000 Thread 1967] com.vmware.vcops.bridge.server.BridgeTracerAspect.processBridgeResult - SessionId: e4a88a55-xxxx-xxxx-xxxx-6722ca6d6a25::6a6ec47b-xxxx-xxxx-xxxx-5d5d9cfd4d93; UserId: e4a88a55-xxxx-xxxx-xxxx-6722ca6d6a25; UserName: admin
Function addSSOSource execution takes 1436
To resolve the issue, please follow the below steps after
taking snapshots of the Aria Operations node
Make sure the cluster is in an offline state before proceeding.
Navigate to the SSL Directory:
Go to the following directory:
/data/vcops/user/conf/ssl
Backup the Current Certificates:
Run the following commands to back up the existing certificates:
mv
cluster_cert.pem cluster_cert.pem.bak
mv
cluster_key.pem cluster_key.pem.bak
Run the Python Command:
Execute the following command to create a self-signed certificate:
$VMWARE_PYTHON_BIN -c "import vcopsPlatformCertUtil; vcopsPlatformCertUtil.createSelfSignedCertificate('/data/vcops/user/conf/ssl')"
Change Ownership of the New Certificates:
Return to the
/data/vcops/user/conf/ssl
directory.
Update the ownership of the newly created certificates by running the following commands:
pgsql
chown
admin
:
admin
cluster_cert.pem
chown
admin
:
admin
cluster_key.pem
