VMware Cloud Community
rossanderson
Enthusiast
Enthusiast
‎06-17-2021 11:48 AM

vCenter with OpenLDAP (SSL) and IdP

Has anyone been able to get OpenLDAP working with their IdP? In our case, we use Okta and I'm currently trying to get the LDAP Interface feature working.

I am able to add the Identity Source created, enumerate users and assign a user to the Administrators role. I have created a dedicated sign-on policy on the Okta side that matches my user and bypasses multifactor authentication. However, no matter how I try to sign in to vCenter, it does not work. I can see in the Okta logs that I am matching the Sign-on policy correctly and the result is ALLOW, however, the result on the vCenter side is "Invalid Credentials" .. even tho the Okta logs show a success.

Has anyone done this sort of implementation with Okta or their own IdP? We want to do this with MFA but I think I need to get the non-MFA working first! Thanks!

0 Kudos
1 Reply
Dirk-22
Contributor
Contributor
‎06-22-2022 04:59 AM

Hi rossanderson,

I am trying to setup the same solution. But I cannot get Okta (or Azure AD) to work as an external identity provider in vCenter 7.0.3. During setup I get the error the "username" claim is not supported from the OIDC IdP. How did you setup Okta to work as external identity provider ?

0 Kudos