vCAC 6.0.1, Inaccessible Tenants, and Missing Identity Stores

With vCAC 6.0.x, there is a bug in the SSO appliance where several symptoms present all at the same time: Authentication to AD or LDAP identity stores fails, returning the user to the blank authentication screen. When logged-in to the default tenant as administrator (usually 'administrator@vsphere.local'), accessing tenant identity stores results in a 'System Exception' error. Tenant Admins cannot add or edit identity stores. This is a documented bug, as listed in VMware KB Article 2075011, and at the time of writing there is a workaround. The issue as documented is the administrator account in the default tenant expires 90 days after implementation of the appliance. I came across this issue, and was for a while not … [Read more...]