nerdexam
Broadcom-VMware

2V0-622 · Question #30

When attempting to log in with the vSphere Web Client, users have reported the error: Incorrect Username/Password The administrator has configured the Platform Services Controller Identity Source as:

The correct answer is A. Users are typing the password incorrectly. B. Users are in a forest that has 1-way trust.. An incorrect username/password error when using Active Directory over LDAP can result from a user typing the wrong password or from a one-way forest trust that prevents authentication from propagating correctly.

Section 1 – Configure and Administer vSphere 6.5 Security

Question

When attempting to log in with the vSphere Web Client, users have reported the error:

Incorrect Username/Password The administrator has configured the Platform Services Controller Identity Source as:

-Type. Active Directory as an LDAP Server -Domain: vmware.com -Alias: VMWARE -Default Domain: Yes Which two statements would explain why users cannot login to the vSphere Web Client? (Choose two.)

Options

  • AUsers are typing the password incorrectly.
  • BUsers are in a forest that has 1-way trust.
  • CUsers are in a forest that has 2-way trust.
  • DUsers are logging into vCenter Server with incorrect permissions.

How the community answered

(71 responses)
  • A
    61% (43)
  • C
    27% (19)
  • D
    13% (9)

Why each option

An incorrect username/password error when using Active Directory over LDAP can result from a user typing the wrong password or from a one-way forest trust that prevents authentication from propagating correctly.

AUsers are typing the password incorrectly.Correct

A user entering the wrong password is the most direct cause of an incorrect username/password error, and should always be verified first before investigating infrastructure issues.

BUsers are in a forest that has 1-way trust.Correct

A one-way forest trust means that only one domain trusts the other - if the users' domain is in a forest with only a one-way trust toward vsphere.local's AD domain, their credentials cannot be validated through LDAP, causing authentication failure.

CUsers are in a forest that has 2-way trust.

A two-way forest trust allows mutual authentication between forests, so users in a two-way trust environment would be able to authenticate successfully through the LDAP identity source.

DUsers are logging into vCenter Server with incorrect permissions.

Incorrect permissions in vCenter Server would result in an authorization error after login succeeds, not an 'Incorrect Username/Password' error during the authentication phase.

Concept tested: Active Directory LDAP identity source and trust relationships

Source: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.authentication.doc/GUID-B6EAF8DD-51B2-4EA0-8B14-8DF58A5CB965.html

Topics

#SSO identity source#Active Directory LDAP#forest trust#vSphere Web Client login

Community Discussion

No community discussion yet for this question.

Full 2V0-622 Practice