User unable to log in to the VMware Telco Cloud Service Assurance user interface.

Root Cause

1. Check that Nginx and keycloak pods are ready and available using kubectl.
2. User not provisioned in keycloak native user DB or LDAP.
3. LDAP not configured / connectivity issues between LDAP and keycloak.

Solution

• If Native user management is preferred authentication mechanism (default):
  1. Log in to the Keycloak user interface at the <VMware Telco Cloud Service Assurance_IP>/auth endpoint as admin.
  2. Verify that the relevant user details are present in the “Users” section. Reset password if necessary.
• If LDAP is configured as Identity Provider:
  1. Log in to the Keycloak user interface at the <VMware Telco Cloud Service Assurance_IP>/auth endpoint as an admin.
  2. Navigate to User federation section and check LDAP connection details.
  3. To validate connectivity between keycloak and LDAP, use the test option in the LDAP configuration page.