Initial Setup of SSO

 

SSO is an integral part of providing access rights to your Vcentre server. You can assign permissions to people based on their user account, group memberships and link it with various authentication methods.

After installing Vcentre for the first time log onto the Web Client with the username administrator@vsphere.local and the password you used during the install. The address for the Web Client will be
https://Server Name:9443/web-client
Though if you selected a different port to 9443 during the installation then use that.

1 - Initial logon

On the Left hand side go to Administration

2 - Vcentre home

Click Configuration > Identity Sources > Plus symbol

3 - Administration

There are a number of authentication options. As my Vcentre server is part of a Windows domain, I will be using AD (Integrated Windows Authentication) in this example.
Enter the domain name if needed and if your Vcentre server is part of the Windows domain, select Use machine account.
If you want to use SPN please refer to http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2058298

8 - Add Identity Source

 

From the left hand menu go to Users and Groups, then select the group you would like to change. In the lower box select the Add member button.

4 - Users and groups

Select your domain from the drop down menu and select the user / group you would like to add, then OK.

5 - Adding user

We are close to finished with adding the new users to the Vcentre server. We now need to add the newly assigned users and groups to specific Vcentre servers.

From the Left hand menu go

Home > Vcentre > Vcentre > Vcentre Servers > Server Name > Manage > Permissions

6 - Permissions

Click on the Plus symbol

Select the role you would like to assign and then click Add
Select your user / group and OK and OK again.

7 - adding permissions

You have now given a domain member permissions to use the Vcentre server.

 

Leave a Reply

Your email address will not be published. Required fields are marked *