In my previous NetApp blog post, I demonstrated how to use Active Directory (AD) Authentication on my NetApp ONTAP OTS tightening up Security.
A prerequisite is to have Administrator Privledges to Join vCenter to your Windows Active Directory (AD) and its a good practice to have / create a Security Group ‘VMwareAdmins’
From the Home Screen, Click on Administration.
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC9-1-1024x622.jpg)
Under Single Sign On (SSO)
- Click on Configuration
- Click on Active Directory Domain
- Click on Join AD
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC10-1-1024x576.jpg)
Join Active Directory Domain
- enter Domain details
- enter User and Password
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC11-1.jpg)
After you successfully Join the AD, you must Aknowledge and Reboot vCenter.
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC12-1-1024x338.jpg)
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC13-1-1024x576.jpg)
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC14-1-1024x683.jpg)
After vCenter has Rebooted, you must now Configure the Identity Source.
- Under Single Sign On (SSO) Click on Configuration
- Click on Indentity Provider
- Click on Identity Sources
- Click ADD
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC15-1-1024x576.jpg)
Add Identity Source
- Enter Domain Name (HDC.LOCAL)
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC16-1-1024x624.jpg)
Set Identity Sources
- Select the Radio Button of the Domain
- Click on Set as Default
- Accept and Click OK
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC17-1-1024x500.jpg)
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC18-1-1024x576.jpg)
Create / Use the VMwareAdmins Security Group from your AD
- Assign Authorized Users to the Security Group
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC19-1-1024x576.jpg)
Add Authorized Domain Users / Security Groups
- Under Administration Click on Global Permissions
- Click on the + icon and Add the User / Security Group
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC20-1-1024x576.jpg)
Click the Domain Drop Down Icon
- Select your Domain Name
- Add your Users / Security Group
- Select the Role
- Tick the ‘Propagate to Children
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC21-1-1024x679.jpg)
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC22-1-1024x683.jpg)
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC23-1-1024x476.jpg)
Now that you have added your authorized users / Security Group, lets log out using the ‘Administrator@vsphere.local’ and use an Authorized AD user.
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC35-2-1024x434.jpg)
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC25-1.jpg)
![](http://hybriddatacenter.net/wp-content/uploads/2020/10/VC26-1-1024x384.jpg)