Remote Console authentication

rijukl · ‎03-17-2009

I have an ESX Server 3.0.0 with Virtual Center running in a Windows 2003 box integrated to AD.

I would like to enable Remote console for a few Virtual Machines in it.

I generated the long url for the virtual machine in question, added the user from AD to the respective role.

But when I am not able to login as the AD user in the web remote console. Only root account can login.

What am I missing ?

thanks,

Riju

Jasemccarty · ‎03-17-2009

Welcome to the forums.

Are you using vCenter Server? Unless you enable AD authentication in ESX, you won't be able to do this without vCenter Server.

Jase McCarty, VCP, vExpert, VTSP

http://www.jasemccarty.com

Co-Author of VMware ESX Essentials in the Virtual Data Center

(ISBN:1420070274) from Auerbach

_{Please consider awarding points if this post was helpful or correct}

Jase McCarty - @jasemccarty

rijukl · ‎03-17-2009

yes, I am using the vCenter server. It is integrated to AD. I login to VI GUI using my AD account.

I created a role, added the AD user to the role and permissions list in the Virtual Machine.

Then, why am I not able to login to the web remote console using that account?

thanks,

Riju

Texiwill · ‎03-18-2009

Hello,

Make sure your permissions are on Virtual Machines and Template and NOT Hosts and CLusters. webAccess reacts differently when the perms are not set on Virtual Machines and Templates.

Best regards,
Edward L. Haletky
VMware Communities User Moderator, VMware vExpert 2009
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.
Blue Gears and SearchVMware Pro Blogs -- Top Virtualization Security Links -- Virtualization Security Round Table Podcast

--
Edward L. Haletky
vExpert XIV: 2009-2023,
VMTN Community Moderator
vSphere Upgrade Saga: https://www.astroarch.com/blogs
GitHub Repo: https://github.com/Texiwill

rijukl · ‎03-19-2009

I guess I will make it more granular.

My attempt is to give a normal employee web access to one of the VMs so that he can manage it via browser.

I added his AD account to the permissions page of that particular VM.

I also generated his remote access url.

Now, the authentication page only accepts the root account. I have tried all possible username combinations :- user@domain.com, NetBiosdomainname\user, domain.com\user, but in vain.

How do I give his AD account web access?

thanks,

Riju

Texiwill · ‎03-20-2009

Hello,

You can only do this through vCenter or if your VMware ESX host is AD aware. Note this does not apply to ESXi.

Best regards,
Edward L. Haletky
VMware Communities User Moderator, VMware vExpert 2009
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.
Blue Gears and SearchVMware Pro Blogs -- Top Virtualization Security Links -- Virtualization Security Round Table Podcast

--
Edward L. Haletky
vExpert XIV: 2009-2023,
VMTN Community Moderator
vSphere Upgrade Saga: https://www.astroarch.com/blogs
GitHub Repo: https://github.com/Texiwill

rijukl · ‎03-20-2009

I have vCenter which is integrated to AD. And I have also added an AD user to the permissions list for the VM.

The web console still doesn't accept his AD account.

Cheers,

Riju

All

Remote Console authentication