[500] An error occurred while fetching identity providers. Try again. If problem persists, contac...

问题

vcenter不能登录web界面

症状

1512712187131.png

[500] An error occurred while fetching identity providers. Try again. If problem persists, contact your administrator. Back to login screen

解决方案

• 1.官方解决
• 2.在步骤1中忘记了root的密码,破解密码的解决方案
  • 使用 WinSCP 上传文件到 vCenter 或 ESXi 主机[vCenter 更优]
  • 从此链接下载 WinSCP 安装或便携版。
  • 运行 WinSCP，并用以下指令定义新会话：
    • File protocol: SFTP
    • Host name: The vCenter or ESXi FQDN or IP address.
    • Port number: 22
    • Password:
      • Click Advanced
      • Select SFTP
      • In SFTP server, replace the default with this: shell /usr/libexec/sftp-server
      • 这个选项比更改 vCenter 的 bash 更好，因为它不会带来更改 vCenter Photon 作系统设置的风险。
      • 使用此选项后，WinSCP 不会返回以下错误：
      • "Received too large (1433299822 B) SFTP packet. Max supported packet size is 1024000 B.
      • The error is typically caused by message printed from startup script (like .profile). The message may start with "Unkn".
      • Cannot initialize SFTP protocol. Is the host running an SFTP server?"
    • Click Login
    • 记得把文件上传到/tmp中
• 3.破解密码之后,进入os执行步骤1,遇到的报错如下

Service-control failed. Error: Failed to start services in profile ALL. RC=1, stderr=Failed to start vapi-endpoint, vpxd-svcs services. Error: Operation timed out

• 4.修正步骤3的错误,官方给出的解决方案

• 5. 重置证书

cd /tmp
unzip vCert-6.0.0-20250218.zip
cd vCert-6.0.0-20250218
./vCert.py

在菜单中，为以下选项输入选项 6：使用 VMCA 签名的证书重置所有证书

VCF/VVF Certificate Management Utility (version 6.0.0)
-----------------------------------------------------------------
 1. Check current certificate status
 2. View certificate info
 3. Manage certificates
 4. Manage SSL trust anchors
 5. Check configurations
 6. Reset all certificates with VMCA-signed certificates
 7. ESXi certificate operations
 8. Restart services
 9. Generate certificate report
 E. Exit

Select an option [1]: 6

“Certificate Signing Request Information”可以保留默认值，也可以使用公司和/或环境信息进行更新。在此示例中，我们将其保留为默认值：

Certificate Signing Request Information
-----------------------------------------------------------------
Enter the country code [US]:
Enter the Organization name [VMware]:
Enter the Organizational Unit name [VMware Engineering]:
Enter the state [California]:
Enter the locality (city) name [Palo Alto]:
Enter the IP address (optional):
Enter an email address (optional):
Enter any additional hostnames for SAN entries (comma separated value): 

重置证书之后,可以选择 1. Check current certificate status查看证书状态