VMware Cloud Community
jacksonp2008
Contributor
Contributor
‎09-11-2017 09:00 PM

Can vCenter SSO be added after the installation

vcsa 6.5, SSO domain was deleted with the webUI so only local logins are functioning.

Would like to find a command line utility to add the SSO domain back in rather than re-installing the entire thing.

Many thanks

Reply
0 Kudos
3 Replies
AishR
VMware Employee
VMware Employee
‎09-19-2017 12:14 AM

Understanding vCenter Single Sign-On (SSO) command line options (2038826) | VMware KB This KB article should be of help to you.

Reply
0 Kudos
jacksonp2008
Contributor
Contributor
‎09-19-2017 02:37 PM

Thank-you Ashish

I'm running "VMware vCenter Server Appliance 6.5.0.10000" and it appears the 'rsautil' command is not in here.

root@vcsa [ /usr/lib/vmware-sso ]# ls

bin  commonlib  firewall  vmware-sts

Doc says:

  • For Linux: /usr/lib/vmware-sso/utils

Reply
0 Kudos
bdubisz
VMware Employee
VMware Employee
‎09-20-2017 08:52 AM

Mentioned KB article is valid only for 5.1 version, not applicable for 6.5

Can you explain how SSO domain has been removed in the Web Client?

In general, you are unable to remove SSO domain (vsphere.local by default) in the Web Client - delete Identity Source button is greyed out.

You are able to remove localos domain and any custom domain (Active Directory).

To recreate localos or custom AD domain, you just need to click Add Identity Source button.

More information: Add a vCenter Single Sign-On Identity Source

identity-source.PNG

Reply
0 Kudos