Knowledge Base

The VMware Knowledge Base provides support solutions, error messages and troubleshooting guides
 
Search the VMware Knowledge Base (KB)   View by Article ID
 

Enabling Active Directory on the VMware vCenter Server Appliance 5.x fails with the error: Enabling active directory failed (2062610)

Symptoms

  • Attempting to enable Active Directory on the vCenter Server Appliance (VCSA) fails.
  • You are unable to enable Active Directory on the VCSA through the VMware vCenter Server Appliance Management Interface (VAMI).
  • Enabling Active Directory on the VCSA through the VAMI at https://vCenter_FQDN:5480 fails.
  • You are unable to add a VCSA to an Active Directory domain on the command line using SSH.
  • You see the error:

    ERROR: Enabling active directory failed


    Or

    VC_CFG_RESULT=302

  • The vpxd_cfg.log file (located in /var/log/vmware/vpx) contains entries similar to:

    YYYY-MM-DD 13:38:09 4913: ERROR: Enabling active directory failed: Error: Invalid username [code 0x0000000b] The username 'DOMAIN\username@DOMAIN.COM' is invalid because it contains a backslash. Please use UPN syntax (user@domain.com) if you wish to use a username from a different domain.

    ...

    Testing domain (domain.com)

    Enabling active directory: domain.com ssc-gj
    ERROR: Enabling active directory failed: Joining to AD Domain: domain.com With Computer DNS Name: VCSA Error: Required configuration stage not enabled [code 0x0000a606] The configuration of module 'set computer hostname' is required. Please either allow this configuration stage to be performed automatically (by passing '--enable hostname'), or manually perform these configuration steps and rerun the domain join: The following step(s) are required: Change the fqdn from 'VCSA' to 'VCSA. domain.com '. The current fqdn is invalid because it does not contain a dot in the name. Changing the fqdn could be done via DNS, but this program will change it with the following steps...

Cause

This issue can occur when the hostname in the VCSA is set to the host short-name and not the entire Fully Qualified Domain Name (FQDN).

Resolution

To resolve this issue, ensure both of these conditions are met:
  • User credentials use the User Principal Name (UPN) format, for example, user@domain.com.
  • The VCSA hostname uses the FQDN format.
If the VCSA is configured using only the short name or IP address, use the VAMI to modify the hostname. 

To modify the VCSA hostname:
  1. Log into the VAMI as the root user. 

    Note: The default URL is https://vCenter_Server_Appliance_IP:5480 

  2. Click the Network tab and the Address sub-tab.
  3. In the Hostname field, enter the FQDN, for example, VCSA.domain.com.
  4. Under Actions, click Save Settings.
  5. Restart the VCSA.
  6. When the VCSA restarts, join it to the Active Directory domain using the VAMI.

Update History

11/25/2013 - Added resolution information.

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

  • 7 Ratings

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.
What can we do to improve this information? (4000 or fewer characters)
  • 7 Ratings
Actions
KB: