I'm trying to join a Vcenter 8.01 to an AD domain but I get this error
idm client exception: Error trying to join AD, error code [40121],
anyone had found a fix for this ?
can you resolve the domain name from vcenter shell?
next place to look is the AD user you are using to join the domain, does that user have permission to join domain?
Are you using your domain controller's DNS on the vCenter?
It's the most comman cause for not joining to the DC
Regards,
Sachchidanand
Hi all,
The problem with the error was a networking issue that we fixed but still we have something strange happening.
Now we're able to join, apparently, the vcenter to the domain:
- we see the Vcenter's computer object created in the AD
- we see the following in the vcenter
however after the required reboot, but even after a browser refresh, the situation gets back as we didn't do the join
Also having this issue.
When I try from the command line I get this error:
Please check the connectivity to AD from vCenter. Also check all the required ports should be open (both udp and tcp)
Port 88 - Kerberos authentication
Port 123 – NTP
Port 135 - RPC
Port 137 - NetBIOS Name Service
Port 139 - NetBIOS Session Service (SMB)
Port 389 - LDAP
Port 445 - Microsoft-DS Active Directory, Windows shares (SMB over TCP)
Port 464 - Kerberos - change/password changes
Port 3268- Global Catalog search
Regards,
Sachchidanand