We've check the 'vmware-sts-idmd.log' and get the logs with error.
we established a new windows 2012 and reinstall the vcenter which is the same version to the previous env. in windows 2008 , and it re-connect the original database.
2020-04-11T00:58:50.526+08:00 vsphere.local 46b42008-064a-4871-8dbd-ddf71c1635b9 INFO ] [VmEventAppender] EventLog: source=[VMware Identity Server], tenant=[vsphere.local], eventid=[USER_NAME_PWD_AUTH_FAILED], level=[ERROR], category=[VMEVENT_CATEGORY_IDM], text=[ParameterizedMessage[messagePattern=Failed to authenticate principal [{}]. User password expired., stringArgs=[vsphere.local\test0410], throwable=null]], detailText=[null], corelationId=[46b42008-064a-4871-8dbd-ddf71c1635b9], timestamp=[1586537930526]
[2020-04-11T00:58:50.526+08:00 vsphere.local 46b42008-064a-4871-8dbd-ddf71c1635b9 ERROR] [IdentityManager] Failed to authenticate principal [vsphere.local\test0410]. User password expired.
[2020-04-11T00:58:50.526+08:00 vsphere.local 46b42008-064a-4871-8dbd-ddf71c1635b9 INFO ] [IdentityManager] Authentication failed for user [vsphere.local\test0410] in tenant [vsphere.local] in [18] milliseconds with provider [vsphere.local] of type [com.vmware.identity.idm.server.provider.vmwdirectory.VMwareDirectoryProvider]
[2020-04-11T00:58:50.526+08:00 vsphere.local 46b42008-064a-4871-8dbd-ddf71c1635b9 ERROR] [ServerUtils] Exception 'com.vmware.identity.idm.PasswordExpiredException: User account expired: {Name: test0410, Domain: vsphere.local}'
com.vmware.identity.idm.PasswordExpiredException: User account expired: {Name: test0410, Domain: vsphere.local}
at com.vmware.identity.idm.server.provider.vmwdirectory.VMwareDirectoryProvider.checkUserAccountFlags(VMwareDirectoryProvider.java:1379) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.IdentityManager.authenticate(IdentityManager.java:3006) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.IdentityManager.authenticate(IdentityManager.java:9762) ~[vmware-identity-idm-server.jar:?]
at sun.reflect.GeneratedMethodAccessor43.invoke(Unknown Source) ~[?:?]
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_141]
at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_141]
at sun.rmi.server.UnicastServerRef.dispatch(UnicastServerRef.java:357) ~[?:1.8.0_141]
at sun.rmi.transport.Transport$1.run(Transport.java:200) ~[?:1.8.0_141]
at sun.rmi.transport.Transport$1.run(Transport.java:197) ~[?:1.8.0_141]
at java.security.AccessController.doPrivileged(Native Method) ~[?:1.8.0_141]
at sun.rmi.transport.Transport.serviceCall(Transport.java:196) ~[?:1.8.0_141]
at sun.rmi.transport.tcp.TCPTransport.handleMessages(TCPTransport.java:568) ~[?:1.8.0_141]
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run0(TCPTransport.java:826) ~[?:1.8.0_141]
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.lambda$run$0(TCPTransport.java:683) ~[?:1.8.0_141]
at java.security.AccessController.doPrivileged(Native Method) ~[?:1.8.0_141]
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(TCPTransport.java:682) [?:1.8.0_141]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149) [?:1.8.0_141]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624) [?:1.8.0_141]
at java.lang.Thread.run(Thread.java:748) [?:1.8.0_141]
[2020-04-11T01:12:06.569+08:00 vsphere.local ef9a8806-6a14-42cd-93e2-1f9882f63acc INFO ] [IdentityManager] Password for user [test0410] successfully set for tenant [vsphere.local]
[2020-04-11T01:12:13.086+08:00 vsphere.local 367af5f8-647c-4627-b55f-61f58f70c9f5 WARN ] [LdapErrorChecker] Error received by LDAP client: com.vmware.identity.interop.ldap.OpenLdapClientLibrary, error code: 49
[2020-04-11T01:12:13.086+08:00 vsphere.local 367af5f8-647c-4627-b55f-61f58f70c9f5 WARN ] [ServerUtils] cannot bind connection: [ldap://localhost:389, test0410@vsphere.local]
[2020-04-11T01:12:13.086+08:00 vsphere.local 367af5f8-647c-4627-b55f-61f58f70c9f5 ERROR] [ServerUtils] cannot establish connection with uri: ldap://localhost:389
[2020-04-11T01:12:13.086+08:00 vsphere.local 367af5f8-647c-4627-b55f-61f58f70c9f5 WARN ] [VMwareDirectoryProvider] Failed to authenticate using SRP binding
com.vmware.identity.interop.ldap.InvalidCredentialsLdapException: Invalid credentials
at com.vmware.identity.interop.ldap.LdapErrorChecker$28.RaiseLdapError(LdapErrorChecker.java:413) ~[vmware-identity-platform.jar:?]
at com.vmware.identity.interop.ldap.LdapErrorChecker.CheckError(LdapErrorChecker.java:1090) ~[vmware-identity-platform.jar:?]
at com.vmware.identity.interop.ldap.OpenLdapClientLibrary.CheckError(OpenLdapClientLibrary.java:1226) ~[vmware-identity-platform.jar:?]
at com.vmware.identity.interop.ldap.OpenLdapClientLibrary.ldap_sasl_srp_bind_s(OpenLdapClientLibrary.java:754) ~[vmware-identity-platform.jar:?]
at com.vmware.identity.interop.ldap.LdapConnection.bindSaslSrpConnection(LdapConnection.java:670) ~[vmware-identity-platform.jar:?]
at com.vmware.identity.idm.server.ServerUtils.getLdapConnection(ServerUtils.java:359) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.ServerUtils.getLdapConnectionByURIs(ServerUtils.java:252) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.provider.BaseLdapProvider.getConnection(BaseLdapProvider.java:378) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.provider.BaseLdapProvider.getConnection(BaseLdapProvider.java:365) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.provider.vmwdirectory.VMwareDirectoryProvider.authenticate(VMwareDirectoryProvider.java:377) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.IdentityManager.authenticate(IdentityManager.java:2981) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.IdentityManager.authenticate(IdentityManager.java:9762) ~[vmware-identity-idm-server.jar:?]
at sun.reflect.GeneratedMethodAccessor43.invoke(Unknown Source) ~[?:?]
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_141]
at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_141]
at sun.rmi.server.UnicastServerRef.dispatch(UnicastServerRef.java:357) ~[?:1.8.0_141]
at sun.rmi.transport.Transport$1.run(Transport.java:200) ~[?:1.8.0_141]
at sun.rmi.transport.Transport$1.run(Transport.java:197) ~[?:1.8.0_141]
at java.security.AccessController.doPrivileged(Native Method) ~[?:1.8.0_141]
at sun.rmi.transport.Transport.serviceCall(Transport.java:196) ~[?:1.8.0_141]
at sun.rmi.transport.tcp.TCPTransport.handleMessages(TCPTransport.java:568) ~[?:1.8.0_141]
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run0(TCPTransport.java:826) ~[?:1.8.0_141]
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.lambda$run$0(TCPTransport.java:683) ~[?:1.8.0_141]
at java.security.AccessController.doPrivileged(Native Method) ~[?:1.8.0_141]
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(TCPTransport.java:682) [?:1.8.0_141]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149) [?:1.8.0_141]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624) [?:1.8.0_141]
at java.lang.Thread.run(Thread.java:748) [?:1.8.0_141]
[2020-04-11T01:12:13.093+08:00 vsphere.local 367af5f8-647c-4627-b55f-61f58f70c9f5 WARN ] [VMwareDirectoryProvider] The user is SRP-enabled and failed to authenticate.
[2020-04-11T01:12:13.093+08:00 vsphere.local 367af5f8-647c-4627-b55f-61f58f70c9f5 ERROR] [IdentityManager] Failed to authenticate principal [test0410@vsphere.local] for tenant [vsphere.local]
javax.security.auth.login.LoginException: Login failed
at com.vmware.identity.idm.server.provider.vmwdirectory.VMwareDirectoryProvider.authenticate(VMwareDirectoryProvider.java:405) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.IdentityManager.authenticate(IdentityManager.java:2981) ~[vmware-identity-idm-server.jar:?]
at com.vmware.identity.idm.server.IdentityManager.authenticate(IdentityManager.java:9762) ~[vmware-identity-idm-server.jar:?]
at sun.reflect.GeneratedMethodAccessor43.invoke(Unknown Source) ~[?:?]
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_141]
at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_141]
at sun.rmi.server.UnicastServerRef.dispatch(UnicastServerRef.java:357) ~[?:1.8.0_141]