vSphere SSO Domains & SSO Site

vSphere SSO Domains & SSO Site

vSphere SSO Domains Name

1. Each Platform Services Controller is associated with a vCenter Single Sign-On domain

2. The domain name is used by the VMware Directory Service (vmdir) for all Lightweight Directory Access Protocol (LDAP) internal structuring

2. Default domain name - vsphere.local for all vSphere versions

    Condition I -

               a. Your vSphere domain name is (vsphere.local) till vSphere 5.5 and you don't have option to change it.
               b. If you are upgrading from vSphere 5.5 to 6.x then your vSphere domain name would remains same (vsphere.local) and you don't have option to change it.

    Condition II -
               a. When you install a Platform Services Controller, you are prompted to create a vCenter Single Sign-On domain or join an existing domain

               b. With vSphere 6.0 and later, you can give your vSphere domain a unique name ( you can change domain name now in fresh/new installation)
                    197048_197048.png6-vCSA-Install-Set-SSO-information.png

              Note :- To prevent authentication conflicts, use a name that is not used by OpenLDAP, Microsoft Active Directory, and other directory services.

                           You cannot change the vSphere domain to which a Platform Services Controller or vCenter Server instance already belong
 

SSO Site

1. You can organize SSO domains into logical sites.
2. A site in the VMware Directory Service is a logical container for grouping PSC instances within a vCenter Single Sign-On domain.

3. it’s time to name the site where this SSO server is going to live. This is Site A or you could give name of the city/environment where the server lives ( vSphere 5.5, 6.x)

                      197049_197049.jpgsitea-sso-site.jpg

CMDs to get info...

To find your SSO Domain Name:

/usr/lib/vmware-vmafd/bin/vmafd-cli get-domain-name --server-name localhost

To find your SSO Site Name:

/usr/lib/vmware-vmafd/bin/vmafd-cli get-site-name --server-name localhost

To find you which PSC your vCSA is pointing to:

/usr/lib/vmware-vmafd/bin/vmafd-cli get-ls-location --server-name localhost

/usr/lib/vmware-vmdir/bin/vdcrepadmin -f showservers -h localhost -u administrator

Regards,

SARIK (+91-8826484694)

VCP6-DCV | VCP5.5-DCV | VCP5-DCV | VCA5-DCV | VCA5-Cloud | RHCSA & RHCE 6 | A+

____________________________________

Please Mark "Helpful" or "Correct" if It'll help U!!

____________________________________

@Follow...

https://www.facebook.com/vMwarevtech/

http://communities.vmware.com/people/sarikrizvi

https://twitter.com/sarikrizvi

https://www.linkedin.com/in/sarikrizvi

https://www.youracclaim.com/user/sarik

Version history
Revision #:
1 of 1
Last update:
‎03-02-2018 11:24 AM
Updated by: