Knowledge Base

The VMware Knowledge Base provides support solutions, error messages and troubleshooting guides
 
Search the VMware Knowledge Base (KB)   View by Article ID
 

vCenter Server login fails with error: A general system error occurred: Authorize Exception (1015639)

Symptoms

  • vCenter Server services are running, but a user that was previously able to log into vCenter Server no longer can
  • A local admin account is able to log in, but domain users cannot
  • You see this error:

    A general system error occurred: Authorize Exception

Cause

This error occurs when the vCenter Server loses its connection to the Active Directory domain controller.

Resolution

To resolve this issue:

  1. Review the local Administrators group on the vCenter Server host and ensure that your domain administrator AD group was added.

    Note: If the Security ID (SID) is displayed and not the group name, this usually indicates that vCenter Server has lost its link to the domain controller.

  2. Remove vCenter Server from the Active Directory domain and re-add it.

    Note: Before unjoining the vCenter Server from the domain, ensure that the local admin user has administrator rights to the vCenter Server, as this will remove all domain rights. You may also want to document all domain rights so you can re-apply them after you rejoin the domain. As a best practice, take a backup of the vCenter Server database prior to unjoining the domain.

  3. vCenter Server permissions are removed for domain users when vCenter Server is removed from the domain and re-added. To prevent this, follow these steps:

    1. Stop the vCenter Server service in Windows and set the Startup type to Disabled.
    2. Remove the vCenter Server from the domain.
    3. Reboot vCenter Server, and verify that the vCenter Server service is stopped.
    4. Add vCenter Server back into the domain.
    5. Restart vCenter Server and start the vCenter Server service.
    6. Set the Startup type of the vCenter Server service to Automatic, and start the service.

vCenter Server now accepts the domain user account credentials, and users are able to log in.

Note: Additionally, verify and ensure that the Identity Source is correct. For more information, see Configuring a vCenter Single Sign On Identity Source using LDAP with SSL (LDAPS) (2041378).

Additional Information

For more information, see After making a change or restarting Single Sign On server system, vCenter Server 5.1.x fails to start (2036170).

See Also

Update History

03/12/2013 - Added link to article 2036170

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

  • 60 Ratings

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.
What can we do to improve this information? (4000 or fewer characters)
  • 60 Ratings
Actions
KB: