Solved: vSphere 5.5 Linux Appliance LDAP

tbbochum · ‎05-20-2014

Hi,

I have a question regarding VCLA(vSphere 5.5 Linux Appliance) and LDAP.

We need to connect our vCenter Linux Appliance to our LDAP Server.

Q1: does I need a SSO or can I configure the vCenter to use LDAP without a SSO?

Q2: If I need a SSO does the Appliance ship one ?

Q3: If yes. Witch document describe it ? I do not find a suitable doc

Thanks a lot !

rh5592 · ‎05-20-2014

Q1: Is this the point where the SSO will installed or activated for the VCSA ?

It is where you configure if you will use the embedded SSO or an external SSO. If you select embedded, you just need to provide the password for the SSO Admin account administrator@vsphere.local. Once saved, the first portion of SSO is done. You then have to login to vSphere Web Client https://VCSAIP:9443 using the administrator@vsphere.local and configure the Identity Sources (this is the configuration of how SSO will connect to your LDAP server). Lots of articles out there, here is one Howto: AD Authentication in vCenter SSO 5.5 | Virten.net

Screen Shot 2014-05-20 at 9.03.34 PM.png

Q2: If yes ? Why do I need a --> "Account with right to register vCenter with the SSO server"

This is required only if you have an existing SSO instance and would like to use it for your vCenter Server.

Regards. ================================================= "If found useful, kindly mark answers Correct or Helpful " http://rh5592.com =================================================

View solution in original post

rh5592 · ‎05-20-2014

Q1: does I need a SSO or can I configure the vCenter to use LDAP without a SSO?

You need SSO. SSO will connect to your LDAP server

Q2: If I need a SSO does the Appliance ship one ?

Yes, SSO is included in the VCSA

Q3: If yes. Witch document describe it ? I do not find a suitable doc

Configuration is the same be it appliance or Windows based vCenter. For additional info refer to VMware KB: VMware vCenter Single Sign-On Server 5.5 FAQs

Regards. ================================================= "If found useful, kindly mark answers Correct or Helpful " http://rh5592.com =================================================

tbbochum · ‎05-20-2014

Hey,

thanks for these quick response. I do not understand how the SSO will be installed or activated for running.

I use the "VMware vCenter Server Appliance" configuration Website on Port 5480 of my VCSA.

- Log in as root

- brows to the vCenterServer tab

- click on SSO ( SSO Settings )

Q1: Is this the point where the SSO will installed or activated for the VCSA ?

Q2: If yes ? Why do I need a --> "Account with right to register vCenter with the SSO server" <--- LDAP user with root privileges ?

- We use a LDAP. Anonymous can read the LDAP tree. We will not provide a LDAP Admin vCenter do not need to write into our LDAP.

Thanks for the advice !

rh5592 · ‎05-20-2014

Q1: Is this the point where the SSO will installed or activated for the VCSA ?

It is where you configure if you will use the embedded SSO or an external SSO. If you select embedded, you just need to provide the password for the SSO Admin account administrator@vsphere.local. Once saved, the first portion of SSO is done. You then have to login to vSphere Web Client https://VCSAIP:9443 using the administrator@vsphere.local and configure the Identity Sources (this is the configuration of how SSO will connect to your LDAP server). Lots of articles out there, here is one Howto: AD Authentication in vCenter SSO 5.5 | Virten.net

Screen Shot 2014-05-20 at 9.03.34 PM.png

Q2: If yes ? Why do I need a --> "Account with right to register vCenter with the SSO server"

This is required only if you have an existing SSO instance and would like to use it for your vCenter Server.

Regards. ================================================= "If found useful, kindly mark answers Correct or Helpful " http://rh5592.com =================================================

All

vSphere 5.5 Linux Appliance LDAP