Solved

vcenter 4.1 AD authentication

Posted on 2014-02-24
9
750 Views
Last Modified: 2014-02-27
hello Expert
i just build up a vcenter with edition is 4.1, could you teach me how i can add Active Directory authentication for this vCenter so that i can delegate permissions for each domain account?

thank you
0
Comment
Question by:beardog1113
  • 4
  • 3
  • 2
9 Comments
 
LVL 119
ID: 39881967
Is your vCenter Server installed and added to a Member Server of a Domain ?
0
 

Author Comment

by:beardog1113
ID: 39881969
hello
it looks like make the vShpere host join domain and authenticate againstit, if i have 100 host under the vcenter, may i need do this 100 times for each host?
does it possible make the vcenter to authenticate against the domain directly?

thank you
0
 

Author Comment

by:beardog1113
ID: 39881972
hi Andrew
yes it is, the vcenter is a domain member server.

thanks
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 13

Accepted Solution

by:
Abhilash earned 250 total points
ID: 39882310
If its a Domain member server then the vCenter ca authenticate AD Users.
Now to add permissions to vCenter, Click on vCenter object and click on the Permissions TAB.

Once you get to there you can Right-Click and select Add Permissions.
This will take you to the permissions Window. On the top you will see a drop down list of authentication sources. Select your AD server from it.
Below in the box it will show all users in AD, search for the user/group you need to assign permissions to and click on the Add button. On the right you will find the roles list. Assign the required role(Adminstrator/read-only/No Acess/Custom Role) for the user/group and click ok.

Now you will be able to login using that account from AD.
0
 
LVL 119

Assisted Solution

by:Andrew Hancock (VMware vExpert / EE MVE^2)
Andrew Hancock (VMware vExpert / EE MVE^2) earned 250 total points
ID: 39882334
If you you have added Domain Administrators to the Administrators group on the Member Server (vCenter Server), you should be able to login as Administrator, using a Domain Administrator account, which will then let you Add Permissions to the VM Template and Folder view.
0
 

Author Comment

by:beardog1113
ID: 39884629
hello Abhilash
your options is under login with "Administrator" right?

hello Andrew
of course i am using the account belong to "domain admins" to login the vcenter, but it told me that i don't have the permission to login. also as Abhilash mentioned, while add the permission, how can i update the domain list? i mean i have several domains in our organization which is totally trust domain relationship, how can i display other domains in the list?

thank you all
0
 
LVL 13

Expert Comment

by:Abhilash
ID: 39884635
Yes you will get the options when you login with Administrator if that is what you are asking.
Any user who has Administrator login to vCenter can do these changes.
I not sure if this is possible in vCenter 5.0 and below. I'm sure it can be done from 5.1 and above.
0
 
LVL 119
ID: 39884942
Are you Domain Administrator accounts, members of the Local Administrators group on the member server? (which is usually the Default).

Any member of this group has Default Access to vCenter, and when you've logged in, then we can suggest how you modify permissions, and add groups and roles.

If the trusts are in place, those domains, should be able in the pick lists.
0
 

Author Closing Comment

by:beardog1113
ID: 39893555
thank you
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
VMware Vsphere Database Redundancy 1 58
backup strategy concern 5 99
DNS server picking up wrong IP address of server 10 57
vRealize Orchestrator 7 guide 4 12
Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
This article will show you how to create an ISO CD-ROM/DVD-ROM image (*.iso), and MD5 checksum signature, for use with VMware vSphere Hypervisor 6.5 (ESXi 6.5). It's a good idea to compare checksums, because many installations fail because of a corr…
Teach the user how to join ESXi hosts to Active Directory domains Open vSphere Client: Join ESXi host to AD domain: Verify ESXi computer account in AD: Configure permissions for domain user in ESXi: Test domain user login to ESXi host:
Teach the user how to use vSphere Update Manager to update the VMware Tools and virtual machine hardware version Open vSphere Client: Review manual processes for updating VMware Tools and virtual hardware versions: Create a new baseline group in vSp…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question