vCenter

 View Only

Enhanced Linked Mode pre-check role conflicts

  • 1.  Enhanced Linked Mode pre-check role conflicts

    Posted May 21, 2021 09:46 AM

    I'm preparing to join two vcsa by enhanced linked mode and with pre-check option I got conflict on two roles. Content of Conflict_roles.json:

    {
    "global" : {
    "resolution" : "MERGE|SKIP|COPY",
    "description" : "The default resolution option used to resolve Role Conflicts is Copy. The conflicts list describes the differences between Role entities on source and target Platform Services Controller. If the source information represents an empty JSON array, all entity attributes from source and target are identical. If the source lists few entries, only these entity attributes are missing from the target. If the target lists few entries, only these entity attributes are missing from the source. Although you can set a global resolution, you can also override it at each conflict level by providing individual resolution mode."
    },
    "conflicts-count" : 2,
    "conflicts-list" : {
    "NoCryptoAdmin" : {
    "source" : {
    "privileges" : "[]"
    },
    "target" : {
    "privileges" : "[Global.com.vmware.vcops, Global.com.vmware.vcops.ContentAdmin, Global.com.vmware.vcops.GeneralUser-1, Global.com.vmware.vcops.GeneralUser-2, Global.com.vmware.vcops.GeneralUser-3, Global.com.vmware.vcops.GeneralUser-4, Global.com.vmware.vcops.PowerUserMinusRemediation, Global.com.vmware.vcopsAdmin]"
    },
    "resolution" : ""
    },
    "Admin" : {
    "source" : {
    "privileges" : "[]"
    },
    "target" : {
    "privileges" : "[Global.com.vmware.vcops, Global.com.vmware.vcops.ContentAdmin, Global.com.vmware.vcops.GeneralUser-1, Global.com.vmware.vcops.GeneralUser-2, Global.com.vmware.vcops.GeneralUser-3, Global.com.vmware.vcops.GeneralUser-4, Global.com.vmware.vcops.PowerUserMinusRemediation, Global.com.vmware.vcopsAdmin]"
    },
    "resolution" : ""
    }
    }
    }

    I tried to unassign it from "No cryptography administrator" role but failed. Error message: InvalidArgument (com.vmware.vapi.std.errors.invalid_argument) => {
    messages = [],
    data = <null>
    }

    Need help to remove it from this roles, so that I continue with linking two vcsa servers.