If you’ve tried to add a new cloud provider within vCloud Application Director 6.0.1, you may have run into an issue where the credentials can’t be validated. The (less than helpful) UI error message is: Could not connect to the Cloud Provider at https://iaas01.lab.dns: Unable to login to cloud provider. Please verify the user credentials as well as other parameters you entered.
The documentation says to use a down-level logon in the format of domain\username, which is incorrect. [Source: http://pubs.vmware.com/appdirector-6/topic/com.vmware.appdirector6.using.doc/GUID-0D61812D-98F7-4D0C-83C1-AF55678EFA53.html]
If you examine Application Director’s tcserver catalina.out log, located at /home/darwin/tcserver/darwin/logs/, you’ll see the following (surprisingly helpful!) error message.
[sourcecode]Jun 24 2014 17:18:40.703 INFO [http-bio-8443-exec-10] [email@example.com] com.vmware.darwin.service.catalog.CloudProviderHelper – Logging in cloud url=https://iaas01.lab.dns with user=lab.dns\damian.karlson
Jun 24 2014 17:18:40.703 INFO [http-bio-8443-exec-10] [firstname.lastname@example.org] com.vmware.darwin.flow.engine.CloudServiceConnectionImpl – Generating SAML for user=’lab.dns\damian.karlson’
Jun 24 2014 17:18:42.134 ERROR [http-bio-8443-exec-10] [email@example.com] com.vmware.darwin.flow.engine.CloudServiceConnectionImpl – Error occured while generating SamlToken for the user=lab.dns\damian.karlson
com.vmware.darwin.csp.exception.CspException: Use firstname.lastname@example.org for Username field instead of lab.dns\damian.karlson
- vCloud Application Director 184.108.40.206 Build 1571033
- vCloud Automation Center 6.0.1 Build: 1571033, using vCenter’s SSO
- vCenter Server Appliance 220.127.116.1100 Build 1750781
[…] Center identity source, you may need to capitalize the domain name in the user’s UPN. (See this post about attempting to add a cloud provider with a down-level username vs. a […]