Friday, 25 September 2015

vCenter 5.5 - Unable to Grant Permission to Domain ID - No Domain Listed

One fine day, someone came to me and asked, " I can't add domain users to vCenter. Can you help?" So, when I checked, I found this :

So yes, no domain listed there. So when I asked in detail, it seems this was a new deployment, vCenter just being created. Which really helped me to narrow down to root cause.

Issues :

Unable to Grant Permission to Domain ID - No Domain Listed 

  1. Login to vCenter using default admin ID ( administrator@vSphere.local ). These steps shall be done from Web Console rather than vSphere Client.

  2.  Click at Administration

  3. Click at Single Sign-On > Configuration. So as we can see here, only vSphere.local and vCenterServer (Default) are configured in Identity Sources. It means, these are the only domains which can be authenticated to.

Resolution :
  1.  Click at Add Identity Source.

  2.  Depending on the environment, appropriately choose identity source type. For this example, it is Active Directory  (Integrated Windows Authentication).Key in the Domain Name and all required info.

  3.  Once done, you will see the new source listed here.

  4. Newly added domain will be listed here.



Post a Comment