changing from Integrated windows authentication to...

rastickland · ‎08-16-2023

hello all. I found this article Change from Integrated Windows Authentication (IWA... - VMware Technology Network VMTN and it makes sense, however, i wanted to verify if i had to remove IWA first and then add LDAPS or can i have IWA still in place, add LDAPS, then remove IWA? In essences, what is the best process you are fining in your experiences?

MerlevedeN · ‎08-16-2023

Hi,

You have to remove the IWA first and than add LDAPS.

First, I removed the existing IWA Identity Source like this:

Go to Administration, Single Sign On, Configuration
Select the IWA Identity Source from Identity Sources tab and Click Remove.

After removal of the existing Identity Source, I added a new one. This time based on Active Directory over LDAPS.

Go to Administration, Single Sign On, Configuration.
Click Add Identity Source from Identity Sources tab.
Import the SSL Certificate (chain) of your root (and intermediate) CA Click Add.

markey165 · ‎08-16-2023

@rastickland I have just written an article for exactly this procedure today.

Checkout my blog post below for a step by step procedure 😊

https://www.digitalewok.com/post/vcenter-switching-iwa-to-ldaps

_____________________________________________
If this post helps you, please leave Kudo | or mark this reply as an answer

maksym007 · ‎09-12-2023

No sense to run both and it will be not possible

All

changing from Integrated windows authentication to LDAP(s) can i run both at the same time?

AD integration

LDAP