vcenter 4.1 AD authentication

hello Expert
i just build up a vcenter with edition is 4.1, could you teach me how i can add Active Directory authentication for this vCenter so that i can delegate permissions for each domain account?

thank you
beardog1113Asked:
Who is Participating?
 
AbhilashConnect With a Mentor BloggerCommented:
If its a Domain member server then the vCenter ca authenticate AD Users.
Now to add permissions to vCenter, Click on vCenter object and click on the Permissions TAB.

Once you get to there you can Right-Click and select Add Permissions.
This will take you to the permissions Window. On the top you will see a drop down list of authentication sources. Select your AD server from it.
Below in the box it will show all users in AD, search for the user/group you need to assign permissions to and click on the Add button. On the right you will find the roles list. Assign the required role(Adminstrator/read-only/No Acess/Custom Role) for the user/group and click ok.

Now you will be able to login using that account from AD.
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Is your vCenter Server installed and added to a Member Server of a Domain ?
0
 
beardog1113Author Commented:
hello
it looks like make the vShpere host join domain and authenticate againstit, if i have 100 host under the vcenter, may i need do this 100 times for each host?
does it possible make the vcenter to authenticate against the domain directly?

thank you
0
Cloud Class® Course: SQL Server Core 2016

This course will introduce you to SQL Server Core 2016, as well as teach you about SSMS, data tools, installation, server configuration, using Management Studio, and writing and executing queries.

 
beardog1113Author Commented:
hi Andrew
yes it is, the vcenter is a domain member server.

thanks
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)Connect With a Mentor VMware and Virtualization ConsultantCommented:
If you you have added Domain Administrators to the Administrators group on the Member Server (vCenter Server), you should be able to login as Administrator, using a Domain Administrator account, which will then let you Add Permissions to the VM Template and Folder view.
0
 
beardog1113Author Commented:
hello Abhilash
your options is under login with "Administrator" right?

hello Andrew
of course i am using the account belong to "domain admins" to login the vcenter, but it told me that i don't have the permission to login. also as Abhilash mentioned, while add the permission, how can i update the domain list? i mean i have several domains in our organization which is totally trust domain relationship, how can i display other domains in the list?

thank you all
0
 
AbhilashBloggerCommented:
Yes you will get the options when you login with Administrator if that is what you are asking.
Any user who has Administrator login to vCenter can do these changes.
I not sure if this is possible in vCenter 5.0 and below. I'm sure it can be done from 5.1 and above.
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Are you Domain Administrator accounts, members of the Local Administrators group on the member server? (which is usually the Default).

Any member of this group has Default Access to vCenter, and when you've logged in, then we can suggest how you modify permissions, and add groups and roles.

If the trusts are in place, those domains, should be able in the pick lists.
0
 
beardog1113Author Commented:
thank you
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.