Scribd Logo
Upload

Welcome to Scribd!

  • 4 views

    How To Add AD Authentication in Vcenter 6

    Uploaded by

    Binh Vu

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd

    How To Add AD Authentication in Vcenter 6

    Uploaded by

    Binh Vu
    4 views6 pages

    Original Title

    How to add AD Authentication in vCenter 6

    Copyright

    © © All Rights Reserved

    Available Formats

    DOC, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Download as doc, pdf, or txt
    4 views6 pages

    How To Add AD Authentication in Vcenter 6

    Uploaded by

    Binh Vu

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Download as doc, pdf, or txt
    of 6

    How to add AD Authentication in vCenter 6.

    0 (Platform
    Service Controller)
    Platform Service Controller is a new component in vSphere 6.0. The PSC contains all the
    services that vCenter needs for its functions including Single Sign-On (SSO). This post
    describes how to configure AD authentication in vCenter Server 6.0.

    The method shown in this post allows you to manage users and groups in your central
    directory. This works for both, the vCenter Server 6.0 installed on Windows Server and the
    vCenter Server Appliance (VCSA).

    1. Open vSphere Web Client (https://[vcenter]/vsphere-client)


    2. Login as Single Sign-On Administrator (Password set during installation)
    3. Navigate to Administration > Single Sign-On > Configuration

    4. Open the Identity Sources tab


    5. Click the green + to add an identity source

    6. Select Identity Source Type:


    A) Active Directory (Integrated Windows Authentication)
    This option works with both, Windows-based vCenter Server and vCenter Server
    Appliance. The underlying system (Windows Server or Infrastructure node of
    Platform Services Controller) has to be a member of the Active Directory domain.

    B) Active Directory as a LDAP Server


    If the underlying system is not part of the Active Directory domain.Fill out the
    remaining fields as follows:
    Name: Label for identification
    Base DN for users: The Distinguished Name (DN) of the starting point for
    directory server searches. Example: If your domain name is virten.lab the DN for
    the entire directory is “DC=virten,DC=lab”.
    Domain name: Your domain name. Example: “virten.lab”
    Domain alias: Your netbios name. Example: “virten”
    Base DN for groups: The Distinguished Name (DN) of the starting point for
    directory server searches.
    Primary server URL: AD Server URL. You can either query the local directory (Port
    389), or the global catalog (Port 3268). Example: “ldap://dc01.virten.lab:3268”
    Secondary Server URL
    Username: A user in the AD Domain with at least browse privileges. Example
    virten\vcentersso
    Press Test Connection to verify AD connection

    7. Click OK
    8. Back at Identity Sources your AD should appear in the list and from now on
    you are able to assign vCenter permissions to users and groups from your active
    directory.
    9. Select you Active Directory and click the world with arrow button to make AD
    to your default domain.

    10. To login with AD users, you have to set permissions. To add a AD user as global
    Administrator navigate to Administration > Access Control > Global
    Permissions
    11. Click Add permission

    12. Click Add…


    13. Select the Active Directory domain under Domain, choose a user and press Add

    14. Press OK twice


    You can now login to the vSphere 6.0 vCenter with your Active Directory Account.

    You might also like