VMware Cloud Community
draposo
Contributor
Contributor
‎01-13-2009 09:47 AM
Jump to solution

How do you create accounts on ESXi using an LDAP backend as your central authentication server?

How can I get ESXi server to use myOpenLDAP backend for accounts to manage VM Guests?

0 Kudos
1 Solution

Accepted Solutions
Dave_Mishchenko
Immortal
Immortal
‎01-13-2009 11:12 AM
Jump to solution

See the attached image.

View solution in original post

Preview file
48 KB
0 Kudos
11 Replies
Nemasis
Enthusiast
Enthusiast
‎01-13-2009 09:53 AM
Jump to solution

ESXi itself and I believe ESX does not support any type of central user directory (LDAP, AD, etc). This would require vCenter as it can intergrate with AD, LDAP or other.

Nemasis

0 Kudos
draposo
Contributor
Contributor
‎01-13-2009 10:28 AM
Jump to solution

So I have to add local accounts? It doesn't seem to allow me to do that through the "Assign Permissions" applet. Is there something that I am missing?

Preview file
118 KB
0 Kudos
DCTony
Contributor
Contributor
‎01-13-2009 10:51 AM
Jump to solution

going about it that way, you will have to create local user accounts on the server and then they will show up in the permissions box. Where you have the dropdown beside server try to see if it will let you choose your domain instead of local server.

0 Kudos
Dave_Mishchenko
Immortal
Immortal
‎01-13-2009 10:54 AM
Jump to solution

You'll create Users / Groups on the Users and Groups tab (visible when you select the ESXi) and then assign permissions on the Permissions tab.

0 Kudos
draposo
Contributor
Contributor
‎01-13-2009 10:55 AM
Jump to solution

No it doesn't .. I was hoping it would, but I can say that I didn't do anything special to this box ... I didn't add it to the domain or anything. Not that I remember seeing a place to do that. I must be missing something here. I thought I could ssh in, but it doesn't let me do that either. I configured the settings to allow remote access, (I THINK!!)

0 Kudos
nick_couchman
Immortal
Immortal
‎01-13-2009 11:02 AM
Jump to solution

ESXi has been stripped of a lot of the stuff you expect in the ESX Service Console. There is very limited PAM support, which, as stated earlier, does not provide for LDAP authentication. There is also no SSH or Console access by default - you have to enable those, and doing so is UnSupported (VMware will not help you with it, and may refuse to support you if you screw something up using the console access). Users can be added from the VI Client, placed in roles, and assigned permissions.

0 Kudos
draposo
Contributor
Contributor
‎01-13-2009 11:05 AM
Jump to solution

But I can't seem to add any users via the VI client. I'm sorry if I am missing something obvious here, but I just don't see it.

0 Kudos
Dave_Mishchenko
Immortal
Immortal
‎01-13-2009 11:12 AM
Jump to solution

See the attached image.

Preview file
48 KB
0 Kudos
draposo
Contributor
Contributor
‎01-13-2009 11:24 AM
Jump to solution

!file:///C:/Users/draposo/AppData/Local/Temp/moz-screenshot-5.jpg!I noticed in the setup intructions that I found here ... http://www.vmware.com/pdf/vi3_35/esx_3i_i/r35/vi3_35_25_3i_i_get_start.pdf?cmp=EMC-ESXiEvalActivatio... it says to create a datacenter, which you can see in my screen shot that I did not. I however, do not have the option to create one either.

Preview file
76 KB
0 Kudos
Dave_Mishchenko
Immortal
Immortal
‎01-13-2009 11:28 AM
Jump to solution

Some of the documentation refers to use of ESXi with VirtualCenter. With ESXi in stand alone mode you do not need to create a datacenter.

0 Kudos
draposo
Contributor
Contributor
‎01-13-2009 11:34 AM
Jump to solution

Dave,

Thank you ... I was right clicking on the users tab not an actual user ... that is all I needed ... well that and maybe a VM book for Dummies Smiley Happy

0 Kudos