We had to restore a vcenter 6 (VCSA) from backups. The AD connection is no longer working and I'm guessing the machine account credentials need to be reset. How can I reset them without breaking all the permissions we have configured in vCenter?
I tried resetting the computer account in AD and opening the Identity source in vCenter and clicking OK. Sort of like you do with Windows computers.
The error I'm getting in the web GUI is:
The name of the identity source does not match the existing Integrated Windows Authentication identity source
Initial tests say I have it fixed.
you just rest in platform service controller. refer to the below link
1. Connect to vCenter using PowerCLI with Administrator@vsphere.local account or any other account which works.
2. Export vCenter permissions ( just to make sure you have permission backup).
http://blog.vmote.net/documents/Export-vCenter-Permissions.ps1
http://blog.vmote.net/documents/Import-vCenter-Permissions.ps1
3. Take vCenter VM snapshot.
4. Login to vCenter with SSO Admin and Remove vCenter from from Domain.
5. Restart vCenter VM
6. Login to vCenter with SSO admin and Add vCenter to Domain.
7. Restart vCenter VM
8. Login with SSO admin, Add AD as Identity Store.
9. Now, check if existing AD users permissions are there.
10. if not try to set permission for AD user if this works you are good.
11. Go head and restore vCenter permission which were exported in first 2nd step.
if anything happens in this process, revert back to vm snapshot taken in step 3.
-
Haridas Vhadade
Initial tests say I have it fixed.