VMware Cloud Community
PLP-Lackner
Contributor
Contributor
‎02-23-2023 11:06 PM
Jump to solution

vCenter 7

I have connect my vCenter with the Active Directory of my Company.

For example i put some AD Users in in the Adminstrator Permission Roll same where the Local Administrator is but the AD User do not have the same Rights.

Labels (2)
Labels
Reply
0 Kudos
1 Solution

Accepted Solutions
DeviVmware
VMware Employee
VMware Employee
‎03-01-2023 05:15 AM
Jump to solution

use group named Administrators.

View solution in original post

Reply
0 Kudos
12 Replies
DeviVmware
VMware Employee
VMware Employee
‎02-24-2023 12:18 AM
Jump to solution

Did you apply global permissions also for AD user/group?

Reply
0 Kudos
PLP-Lackner
Contributor
Contributor
‎02-24-2023 12:31 AM
Jump to solution

Yes i used the global Permissoin. And also propagate to child objects.

Reply
0 Kudos
krzysieksalwa
Enthusiast
Enthusiast
‎02-24-2023 01:56 AM
Jump to solution

Hi,

Try with the group.

Create a group in AD, add some users there and then add this group to vCenter with Administrator permissions to child objects.

Login to vCenter with a user from that group and verify the permissions.

Blog: vmcloud.pl
Twitter: @vmcloudpl
Facebook: vmcloudpl
Reply
0 Kudos
DeviVmware
VMware Employee
VMware Employee
‎02-24-2023 09:18 AM
Jump to solution

Can you tell me what rights AD user is missing compared to administrator account.

Reply
0 Kudos
PLP-Lackner
Contributor
Contributor
‎02-27-2023 01:59 AM
Jump to solution

Vor Example:
When i got to Administration - Users and Groups i got the Message "You have no privileges to view this object."

But iam in the "Administrator" Roll.

Iam also not able to Upload a VM because i got the error, that i do not have permission to the datastore.

Reply
0 Kudos
DeviVmware
VMware Employee
VMware Employee
‎02-28-2023 08:32 AM
Jump to solution

can you share the screenshot of permissions for datastore and mention the user you are having issue with ? also screenshot of global permissions? 

Reply
0 Kudos
PLP-Lackner
Contributor
Contributor
‎02-28-2023 09:41 PM
Jump to solution

vcs_1.pngvcs_2.pngvcs_3.png

 

So actually i should have the same Right like the local Administator.
With the local Administator i can also upload VMs so have permission the the datastore.

 

Reply
0 Kudos
DeviVmware
VMware Employee
VMware Employee
‎03-01-2023 12:36 AM
Jump to solution

Please add your AD group to the vCenter SSO Group. Below article may help you. You need to login as administrator@vsphere.local to make this changes. 

https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.authentication.doc/GUID-CDEA6F32-75...

 

Reply
PLP-Lackner
Contributor
Contributor
‎03-01-2023 01:21 AM
Jump to solution

die which SSO Group?
Do you mean the Group "Administrators" oder more Groups?

Reply
0 Kudos
DeviVmware
VMware Employee
VMware Employee
‎03-01-2023 01:32 AM
Jump to solution

under SSO you will find a group called Administrator. In that group, please add your AD user/Group. 

Reply
0 Kudos
PLP-Lackner
Contributor
Contributor
‎03-01-2023 01:36 AM
Jump to solution

Admin Groups.JPG

There are many Admin groups.

Reply
DeviVmware
VMware Employee
VMware Employee
‎03-01-2023 05:15 AM
Jump to solution

use group named Administrators.

Reply
0 Kudos