Once the LDAP / LDAPS configuration is completed, you can setup Users or Groups to log in to Unisphere and the CLI with an LDAP account. Instructions In order for this configuration to be available and operational, you will first need to configure the LDAP/LDAPS using the KB Article Number 000486476. Run the following command to show the LDAP certificate # openssl s_client -connect dc.virten.lab:636 -showcerts The command displays the certificate chain and SSL session. How to Configure LDAPS Authentication in vCenter 7.0 Connect to the vCenter Server Appliance with SSH and login as root.See Identity Sources for vCenter Server with vCenter Single Sign-On. An identity source can be a native Active Directory (Integrated Windows Authentication) domain, AD over LDAP, AD over LDAP using LDAPS (LDAP over SSL), or OpenLDAP. You can use the sso-config utility to add or remove an identity source.the often used Active Directory source “Active Directory (Integrated Windows Authentication)” is from VMware marked as deprecated. I looked at the second link you provided: Using the CLI to add or configure SSO identity sources in vSphere 6.5 & 6.7 (67304) it explains how to enable either Adding Active Directory (Windows Integrated Authentication), Adding AD over LDAP, Adding AD over LDAP using LDAPS (LDAP over SSL) or Adding Open LDAP using command line they are the sa.
0 Comments
Leave a Reply. |