I have an ESX Server 3.0.0 with Virtual Center running in a Windows 2003 box integrated to AD.
I would like to enable Remote console for a few Virtual Machines in it.
I generated the long url for the virtual machine in question, added the user from AD to the respective role.
But when I am not able to login as the AD user in the web remote console. Only root account can login.
What am I missing ?
thanks,
Riju
Welcome to the forums.
Are you using vCenter Server? Unless you enable AD authentication in ESX, you won't be able to do this without vCenter Server.
Jase McCarty, VCP, vExpert, VTSP
Co-Author of VMware ESX Essentials in the Virtual Data Center
(ISBN:1420070274) from Auerbach
Please consider awarding points if this post was helpful or correct
yes, I am using the vCenter server. It is integrated to AD. I login to VI GUI using my AD account.
I created a role, added the AD user to the role and permissions list in the Virtual Machine.
Then, why am I not able to login to the web remote console using that account?
thanks,
Riju
Hello,
Make sure your permissions are on Virtual Machines and Template and NOT Hosts and CLusters. webAccess reacts differently when the perms are not set on Virtual Machines and Templates.
Best regards,
Edward L. Haletky
VMware Communities User Moderator, VMware vExpert 2009
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.
Blue Gears and SearchVMware Pro Blogs -- Top Virtualization Security Links -- Virtualization Security Round Table Podcast
I guess I will make it more granular.
My attempt is to give a normal employee web access to one of the VMs so that he can manage it via browser.
I added his AD account to the permissions page of that particular VM.
I also generated his remote access url.
Now, the authentication page only accepts the root account. I have tried all possible username combinations :- user@domain.com, NetBiosdomainname\user, domain.com\user, but in vain.
How do I give his AD account web access?
thanks,
Riju
Hello,
You can only do this through vCenter or if your VMware ESX host is AD aware. Note this does not apply to ESXi.
Best regards,
Edward L. Haletky
VMware Communities User Moderator, VMware vExpert 2009
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.
Blue Gears and SearchVMware Pro Blogs -- Top Virtualization Security Links -- Virtualization Security Round Table Podcast
I have vCenter which is integrated to AD. And I have also added an AD user to the permissions list for the VM.
The web console still doesn't accept his AD account.
Cheers,
Riju