Hi,

Just after updating my vSphere system to 5.1 (from 5.0), I notice some strange think with users and groups. Here my setup:

2 domains : let say Domain A and Domain B.

Domain B have a one way trust relationship with domain A. In short, we wan to be able to use Domain A login on domain B.

All my vSphere are on domain B. I have SSO / vCenter server and a Web client. I also create a groupe name VC-Administrators on Domain who contain user from Domain A.

In 5.0, no trouble, all my admin can log with domain A credential.

In 5.1, nothing is working... I add both domain in SSO configuration. My domain A user can log in web client, but they didn't see any vCenter.

BUT, if I put a domain A user directly as a vCenter administrator, it's working.

So, somewhere something doesn't see users from domain A if they are in a group in domain B. User on domain A in domain A works great and B in B also...

I also try a fresh install, same result.

any idea?

Thank you,

Ben