VMware Cloud Community
Hazewindus
Contributor
Contributor

Strange behaviour in vmware SSO with integrated authentication from the client

Hello All,

We are experiencing some strange behaviour with out vpshere permissions in place.

If we give a permission based on an AD user account and the user logs in via the web/full client and checks "use integrated logon" everything works as is. If he logs on as a user and provides the credentials manually everything is still ok. No problem so far.

The problem begins when using groups to set permissions on objects...best practice for ages.... If the user is a member of a group and he logs on using the full/web client and checks the "use integrated logon" the object on which he has permissions based on the group is not shown. When not using integrated authentication the object is shown perfectly based on the group permission.

So basically when using integrated authentication in combination with SSO from a client does not enumerate group permissions.

Is this a known issue and can it be resolved? We already had several calls,

0 Kudos
1 Reply
Hazewindus
Contributor
Contributor

By the way...we are using VMware ESX 5.5 U2....vCenter 5.5.0 VCSA (build 21831111)....client 5.5.0...had the problem before also with older version.

0 Kudos