Author Topic: VMware vCenter with SSO fails to start after P2V  (Read 2448 times)

netfreak

  • Administrator
  • Sr. Member

  • Offline
  • *****
  • 299
    • View Profile
    • Higher Intellect
VMware vCenter with SSO fails to start after P2V
« on: January 14, 2017, 04:31:15 pm »
Situation: you have a basic vCenter deployment with your Single Sign-On service on the same vCenter server and you perform a migration from physical to virtual using the VMware Standalone Converter, and your vCenter service no longer starts. Ran into this problem with a vCenter 5.1 Windows based instance. The problem we encountered was somehow related to SSO though the service itself was running. Try the following:

1) Follow VMware KB article https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2036170 which indicates this:
-Run a command window as administrator and execute set JAVA_HOME=C:\Program Files\VMware\Infrastructure\jre
-Navigate to directory C:\Program Files\VMware\Infrastructure\SSOServer\Utils in your command window (alter if you've chosen a different location)
-Run command rsautil manage-secrets -a recover -m masterPassword using your master admin@system-domain password
-Restart the vCenter SSO service
-Try starting vCenter service again

If the rsautil command fails and/or you don't know or remember the SSO master password, you might have to run with this DB modification found at https://communities.vmware.com/message/2252036#2252036 to change the password. Summary:

Code: [Select]
if SSO password ( admini@system-domain ) needs to be reset, please execute below query on RSA database:
 
UPDATE
[dbo].[IMS_PRINCIPAL]
SET
[PASSWORD] = '{SSHA256}KGOnPYya2qwhF9w4xK157EZZ/RqIxParohltZWU7h2T/VGjNRA=='
WHERE
LOGINUID = 'admin'
AND
PRINCIPAL_IS_DESCRIPTION = 'Admin';
 
This will reset the password to "VMware1234!", after which you login and change the password as needed.

Note: Take backup of RSA database before executing this