Skip to content

vBlog.nl

All about technology

Menu
  • Home
  • VMware Cloud Director
  • vSphere
  • Automation
    • PowerCLI
    • PowerShell
    • Terraform
  • NSX
  • Horizon DaaS
  • About Us
Menu

Horizon DaaS – Horizon view client – password change not working

Posted on March 26, 2019

When you start the horizon client and you get a popup to change your password, or the admin requires you to change the password. It could happen that you receive a message to input a valid username and password…

If you enable the debug mode on you tenant appliance:

  • login to your tenant appliance.
  • vi /usr/local/desktone/release/active/conf/desktone-log4j.xml
    Change the row: <logger name=”com.desktone” level=”info” /> to <logger name=”com.desktone” level=”debug” />

When you retry the password reset you will see messages like:
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] brokerVersion=14.0
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] request=do-submit-authentication
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] character data: windows-password-expired
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] character data: oldPassword
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] character data: Abc123!!
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] character data: newPassword1
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] character data: D3sktop!
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] character data: newPassword2
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] character data: D3sktop!
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] Finished parsing request ‘do-submit-authentication’
2019-03-22 12:39:32,340 DEBUG [com.desktone.view.broker.util.ViewClientSAXHandler]-[https-openssl-apr-4443-exec-9] Finished processing all requests: [do-submit-authentication]

2019-03-22 12:39:32,472 WARN [org.apache.directory.kerberos.client.KdcConnection]-[https-openssl-apr-4443-exec-9] failed to change the password
org.apache.directory.shared.kerberos.exceptions.KerberosException: error response
at org.apache.directory.kerberos.client.KdcConnection._getTgt(KdcConnection.java:301) ~[dt-kerberos-client-2.0.0-M22.jar:2.0.0-M22]
at org.apache.directory.kerberos.client.KdcConnection.getTgt(KdcConnection.java:181) ~[dt-kerberos-client-2.0.0-M22.jar:2.0.0-M22]
at org.apache.directory.kerberos.client.KdcConnection.changePassword(KdcConnection.java:535) [dt-kerberos-client-2.0.0-M22.jar:2.0.0-M22]
at com.desktone.directory.activedirectory.ActiveDirectoryAccessManager.doChangePasswordKerberos(ActiveDirectoryAccessManager.java:3903) [dt-directory-server-impl-8.0.0.jar:?]

2019-03-22 12:39:32,477 DEBUG [com.desktone.directory.activedirectory.ActiveDirectoryAccessManager]-[https-openssl-apr-4443-exec-9] doChangePasswordKerberos, caught ChangePasswordException for user: t.test_test, domain: NETBIOSDOMAIN, error: 2, kerberosError: 24
org.apache.directory.server.kerberos.changepwd.exceptions.ChangePasswordException: Request failed due to a hard error in processing the request.
at org.apache.directory.kerberos.client.KdcConnection.changePassword(KdcConnection.java:619) ~[dt-kerberos-client-2.0.0-M22.jar:2.0.0-M22]
at com.desktone.directory.activedirectory.ActiveDirectoryAccessManager.doChangePasswordKerberos(ActiveDirectoryAccessManager.java:3903) [dt-directory-server-impl-8.0.0.jar:?]
at com.desktone.directory.activedirectory.ActiveDirectoryAccessManager.changePasswordKerberos(ActiveDirectoryAccessManager.java:3871) [dt-directory-server-impl-8.0.0.jar:?]
Caused by: org.apache.directory.shared.kerberos.exceptions.KerberosException: error response
at org.apache.directory.kerberos.client.KdcConnection._getTgt(KdcConnection.java:301) ~[dt-kerberos-client-2.0.0-M22.jar:2.0.0-M22]
at org.apache.directory.kerberos.client.KdcConnection.getTgt(KdcConnection.java:181) ~[dt-kerberos-client-2.0.0-M22.jar:2.0.0-M22]
at org.apache.directory.kerberos.client.KdcConnection.changePassword(KdcConnection.java:535) ~[dt-kerberos-client-2.0.0-M22.jar:2.0.0-M22]
… 34 more
2019-03-22 12:39:32,483 WARN [com.desktone.view.broker.ViewClientServlet]-[https-openssl-apr-4443-exec-9] Please input valid username and password.

Somehow it does not tell you the real issue… After contacting VMware Support, they asked me to check the users in AD (afterwards this was to easy :-)). I saw that the users where not equal, the Pre-windows 2000 was like “t.test_test” and the UPN was like t.test.

So I made them both t.test_test, and tried to reset the password again. Now I was able to change the password like it should be.

 

 7,249 total views,  2 views today

Share on Social Media
twitter facebook linkedin reddit emailwhatsapptelegram

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recent articles

  • VMware Cloud on AWS with FSx for NetApp ONTAP December 28, 2022
  • Workspace ONE Access – Change certificate December 22, 2022
  • UI themes for VMware Cloud Director 10.4.1 and later December 16, 2022
  • VMware Tanzu Kubernetes Grid December 15, 2022
  • Workspace One Access – Not logged in to server FQDN. Please invoke Save before Sync December 12, 2022
  • NSX Edge configuration has failed. 1G hugepage support required. December 7, 2022
  • Horizon DaaS – Unable to connect to Desktop November 24, 2022
  • How to: Request and Install a Lets Encrypt Wildcard SSL on VMware Cloud Director 10.4 October 17, 2022
  • New and improved vSAN 8 explained September 24, 2022
  • How to update a stand alone ESXi host September 13, 2022

Tags

Automation bootstrapping Container Service Extension Credential Manager Desktone.log ESXi EUC EXi GPU Horizon DaaS Instant-Clone Logging NSX nsx-t PowerCLI PowerShell Putty Raspberry PI SSL Tanzu Terraform update vcd-cli vCenter vCloud vCloud Availability vCloud Director VDI vGPU VMware VMworld vSAN vSphere vVols workspace one Zerto

VMware Cloud Provider Blog

  • Usage Meter Registration and Usage Report APIs are now part of Cloud Provider APIs on developer.vmware.com
    by Galina Slavova on February 3, 2023 at 1:12 pm

    We have an important announcement to make – Usage Meter and Usage Report APIs are now part of the Cloud Provider Navigator and can be accessed from the Cloud Provider section on developer.vmware.com. Furthermore, there is a new API for registering Usage Meter with a contract in the VCPP Commerce Portal. Here is how the … Continued The post Usage Meter Registration and Usage Report APIs are now part of Cloud Provider APIs on developer.vmware.com appeared first on VMware Cloud Provider Blog.

  • Introducing Sovereign Cloud Compliance Pack for Aria Operations
    by Amith Vijayanand on February 2, 2023 at 6:30 am

    We are happy to announce the availability of Sovereign Cloud Compliance pack for Aria Operations for our Sovereign Cloud Partners as on 31st January 2023. Introduction of the sovereign cloud compliance pack allows VMware sovereign cloud providers an extended ability to maintain their sovereign posture and allows them to expand their services in to the … Continued The post Introducing Sovereign Cloud Compliance Pack for Aria Operations appeared first on VMware Cloud Provider Blog.

  • VMware Cloud Director extension for VMware Data Solutions 1.1
    by Amith Vijayanand on February 1, 2023 at 6:30 am

    We are glad to announce the general availability of VMware Cloud Director extension for VMware Data Solutions (DSE) version 1.1 as of January 31, 2023. We announced the DSE 1.0, in November 2022, where we introduced the support for data services starting with VMware RabbitMQ (supporting version 1.3) in the VMware Data Solutions portfolio. Today, we announce … Continued The post VMware Cloud Director extension for VMware Data Solutions 1.1 appeared first on VMware Cloud Provider Blog.

  • Introducing A New TechZone Section for VMware Sovereign Cloud
    by Cory Allen on January 31, 2023 at 2:30 pm

    The VMware Sovereign Cloud initiative gives our Cloud Providers the ability to offer flexible, secure, and scalable environments aimed at protecting data sovereignty. We are happy to announce the launch of a new section on our VMware Cloud Tech Zone website for VMware Sovereign Cloud. This site brings together all technical-related content to help our Cloud … Continued The post Introducing A New TechZone Section for VMware Sovereign Cloud appeared first on VMware Cloud Provider Blog.

  • Managed IDS/IPS for VMware Cloud Director
    by Romain Decker on January 30, 2023 at 7:34 pm

    Want to add IDS/IPS services with VMware Cloud Director™ using VMware NSX? There’s a white paper for that! Many VMware Cloud Providers are interested in offering VMware NSX IDS/IPS in their multi-tenant environments managed by VMware Cloud Director. Intrusion Detection Systems (IDS) emerged in the late 1990s to detect traffic patterns indicative of incoming attacks. … Continued The post Managed IDS/IPS for VMware Cloud Director appeared first on VMware Cloud Provider Blog.

©2023 vBlog.nl | Design: Newspaperly WordPress Theme