VMware ESX 3.5 Authentication Login Using Active Directory
Posted on August 26th, 2008 in Tips | 8 Comments »
If you look for VMware authentication login using Microsoft Active Directory, I’m sure you can easily found on any seach enginer but most of the documents slightly outdated which is based on VMware ESX 2.x.
The following article try to give better understanding about latest VMware ESX 3.5 authentication login using AD.
Use esxcfg-auth command – VMware ESX Server Network Management Utility
Login to VMware ESX host using SSH as root
Ping ad.malaysiavm.com to make sure you can reach AD server.
The esxcfg‐auth command includes options for configuring interoperability with several authentication providers. This note focuses on the options that are relevant to Active Directory:
esxcfg‐auth [ [ ‐‐enablead | ‐‐disablead ] [ ‐‐addomain= ] [‐‐addc= ]
Type man esxcfg-auth for more information.
–disableab
Reverts the changes required to authenticate the user against Active Directory.
–enablead
Sets up the Console OS to authenticate the user against an Active Directory server. addomain and addc are required with this option.
–addomain
Sets the domain against which the user is to be authenticated when authenticating against an Active Directory server.
–addc
Sets the domain controller against which the user’s password should be checked.
This enables Active Directory based user authentication in the ad.malaysiavm.com domain
with the domain controller dc01.ad.malaysiavm.com.
Basically the system will generate /etc/krb5.conf file as example below:
