VMware Cloud Community
DanieleFiore201
Enthusiast
Enthusiast
‎06-27-2012 02:42 AM

vCenter appliance and AD authentication

Dear guys,

i'm struggling to have vcenter appliance authenticating against a DC.

I want to join the server in the domain but i get error :

Error: LW_ERROR_KRB5_REALM_CANT_RESOLVE [code 0x0000a3e1]

What does it mean ?

1st : do i need join the appliance in the AD domain?

Any help is appreciated.

Daniele

0 Kudos
5 Replies
Troy_Clavell
Immortal
Immortal
‎06-27-2012 06:03 AM

have you tried joining AD through the CLI of the appliance?

http://kb.vmware.com/kb/2002626

As for if you need the vCenter appliance in the domain.  It's not a requirement

0 Kudos
DanieleFiore201
Enthusiast
Enthusiast
‎06-27-2012 06:25 AM

hi Troy,

i used exactly this article without luck.

0 Kudos
herseyc
Enthusiast
Enthusiast
‎06-27-2012 06:45 AM

Just a couple things you may want to check.

Make sure the appliance can resolve your domain and domain controllers through DNS.  This error is more than likely caused by the fact it cannot resolve the ip addresses.

Also, check the time on you vCenter Appliance.  Time being way off from your AD DCs can cause kerberos issues.

The vCenter appliance does not need to be a domain member but if it is not you will not be able to use domain user authentication to access vCenter with the vSphere client.

Hope this helps.

Hersey

vExpert 2013/2012 :: VCAP5-DCD/VCAP5-DCA/VCAP4-DCA/VCP5,4/EMCISA :: http://www.vhersey.com/ :: Follow me: http://twitter.com/herseyc
DanieleFiore201
Enthusiast
Enthusiast
‎06-27-2012 08:19 AM

well i did that already amd it worked.

0 Kudos
DanieleFiore201
Enthusiast
Enthusiast
‎06-29-2012 01:42 AM

feedback : just informed that our LDAP servers accept only encrypted connection.

I have to work on it now.

So long.

0 Kudos