Solved

vcenter 4.1 AD authentication

Posted on 2014-02-24
9
727 Views
Last Modified: 2014-02-27
hello Expert
i just build up a vcenter with edition is 4.1, could you teach me how i can add Active Directory authentication for this vCenter so that i can delegate permissions for each domain account?

thank you
0
Comment
Question by:beardog1113
  • 4
  • 3
  • 2
9 Comments
 
LVL 118
ID: 39881967
Is your vCenter Server installed and added to a Member Server of a Domain ?
0
 

Author Comment

by:beardog1113
ID: 39881969
hello
it looks like make the vShpere host join domain and authenticate againstit, if i have 100 host under the vcenter, may i need do this 100 times for each host?
does it possible make the vcenter to authenticate against the domain directly?

thank you
0
 

Author Comment

by:beardog1113
ID: 39881972
hi Andrew
yes it is, the vcenter is a domain member server.

thanks
0
 
LVL 13

Accepted Solution

by:
Abhilash earned 250 total points
ID: 39882310
If its a Domain member server then the vCenter ca authenticate AD Users.
Now to add permissions to vCenter, Click on vCenter object and click on the Permissions TAB.

Once you get to there you can Right-Click and select Add Permissions.
This will take you to the permissions Window. On the top you will see a drop down list of authentication sources. Select your AD server from it.
Below in the box it will show all users in AD, search for the user/group you need to assign permissions to and click on the Add button. On the right you will find the roles list. Assign the required role(Adminstrator/read-only/No Acess/Custom Role) for the user/group and click ok.

Now you will be able to login using that account from AD.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 118

Assisted Solution

by:Andrew Hancock (VMware vExpert / EE MVE)
Andrew Hancock (VMware vExpert / EE MVE) earned 250 total points
ID: 39882334
If you you have added Domain Administrators to the Administrators group on the Member Server (vCenter Server), you should be able to login as Administrator, using a Domain Administrator account, which will then let you Add Permissions to the VM Template and Folder view.
0
 

Author Comment

by:beardog1113
ID: 39884629
hello Abhilash
your options is under login with "Administrator" right?

hello Andrew
of course i am using the account belong to "domain admins" to login the vcenter, but it told me that i don't have the permission to login. also as Abhilash mentioned, while add the permission, how can i update the domain list? i mean i have several domains in our organization which is totally trust domain relationship, how can i display other domains in the list?

thank you all
0
 
LVL 13

Expert Comment

by:Abhilash
ID: 39884635
Yes you will get the options when you login with Administrator if that is what you are asking.
Any user who has Administrator login to vCenter can do these changes.
I not sure if this is possible in vCenter 5.0 and below. I'm sure it can be done from 5.1 and above.
0
 
LVL 118
ID: 39884942
Are you Domain Administrator accounts, members of the Local Administrators group on the member server? (which is usually the Default).

Any member of this group has Default Access to vCenter, and when you've logged in, then we can suggest how you modify permissions, and add groups and roles.

If the trusts are in place, those domains, should be able in the pick lists.
0
 

Author Closing Comment

by:beardog1113
ID: 39893555
thank you
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is an issue that we can get adding / removing permissions in the vCSA 6.0. We can also have issues searching for users / groups in the AD (using your identify sources). This is how one of the ways to handle this issues and fix it.
David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
Teach the user how to configure vSphere clusters to support the VMware FT feature Open vSphere Web Client: Verify vSphere HA is enabled: Verify netowrking for vMotion and FT Logging is in place or create it: Turn On FT for a virtual machine: Verify …
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now