Issue after adding Esxi 4.1 into Ad Domain

added my host using vi client to Ad domain.

Tried to login with domain id part of  AD Group named : ESX Admins  -login is fine.

but unable to use any command like we are able to perform in 5.1 for domain ids ?

kindly advice if any more config required to use domain id  with root privilege ?

 and  how can we add local user on esxi 4.1 with root privilege ?
LVL 1
patronTechnical consultant Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
if connecting using the vSphere Client with An AD Account in ESX Admins, can you manage the host server?

See here for details, and the video

http://blogs.vmware.com/vsphere/2011/01/esxi-41-active-directory-integration.html
patronTechnical consultant Author Commented:
everything is fine using vi client.

but if i take putty using domain id and run any command like esxtop  or esxcfg-nics -l
showing output :ash: esxtop or esxcfg :not found

please advice if any more config required for it, id is already part of group named Esx Admins
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
This is because the path is not set for your user.

change to /sbin

and try the commands, and you may also need to su to root
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

patronTechnical consultant Author Commented:
In 5.1, we simply added host to ad domain and all user form group named Esx Admins were able to do everything as earlier doing with root.

but here after adding host Esxi 4.1 to ad domain, we are able to do everything form vi client using domain id part of Esx admins group..but when trying to run any command form putty saying not found ?

Please help to get this resolved..or if any specific configuration we have to do using any command line /file ?
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Yes, 3.x, 4.x and 5.x are different!

type /sbin/ in front of the command
patronTechnical consultant Author Commented:
tried sudo su -  /sbin

in  all cases..showing command not found
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
so if you do the following it does not work...

cd /sbin

./esxcfg-nics

or

/sbin/esxcfg-nics

it works for me.

and it's bcause your path does not include /sbin

type echo $PATH

what is your path ?

This is ALL standard UNIX/LINUX stuff
patronTechnical consultant Author Commented:
/bin
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Yes, that's the issue, update your path as posted.
patronTechnical consultant Author Commented:
great, i tried for /sbin/esxcfg-nics

got output for options..but i use any of options like /sbin/esxcfg-nics -l

showing Error:Error During version check:Failed to get vmkernel version:Operation not permitted[Running as non root?]

would be great help  if we can get this fixed ?
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Yes, you are non ROOT!

type su (followed by root password)

see here

Local ESX/ESXi 4.1 users are not able to issue any administrative commands (2005299)
patronTechnical consultant Author Commented:
Please advice  ,how to configure it in a way, so that domain user can use command ..as we use with root id
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
You need to use SU

This is normal for ESXi 4.1! (yes different to ESXi 5.x)

This is an expected behavior in ESX/ESXi 4.1. Non-root users are not permitted to run administrative commands on an ESX/ESXi 4.1 host. This is true even if they have been granted the administrator role.

Source
http://kb.vmware.com/kb/2005299
patronTechnical consultant Author Commented:
Thanks a lot, got it.

 but now i need to solve it some how?
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
There is no solution.

You will need to su, type in root password.

It's how it's been designed.
patronTechnical consultant Author Commented:
really.. then what is use of creating/adding user ?
if we cant use domain ids to run command like we do in 5.1.
patronTechnical consultant Author Commented:
Thanks for all ur supportive info here,but still m looking if we can have some way to get this configured, with out using root cred. each time?
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Did you read the VMware KB ? There is a workaround published, which is to use su, maybe it's a bug, but VMware ESXI 4.1 is no longer supported, and unlikely to be fixed.

This is an expected behavior in ESX/ESXi 4.1. Non-root users are not permitted to run administrative commands on an ESX/ESXi 4.1 host. This is true even if they have been granted the administrator role.

Source
http://kb.vmware.com/kb/2005299
patronTechnical consultant Author Commented:
su is fine..to use su everything..it will again ask for root cred right ?

so what's the use of using this su every time

m looking for solution like where root should not be used in any case ?
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
su is fine..to use su everything..it will again ask for root cred right ?

Correct.

so what's the use of using this su every time

You would need to ask VMware Support.

You are looking for a solution which does not exist.

This is an expected behavior in ESX/ESXi 4.1. Non-root users are not permitted to run administrative commands on an ESX/ESXi 4.1 host. This is true even if they have been granted the administrator role.

Source
http://kb.vmware.com/kb/2005299

I would consider upgrading to a supported platform.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
patronTechnical consultant Author Commented:
Thanks a lot.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VMware

From novice to tech pro — start learning today.