On the Administration page, click Access control.

Click the User groups tab and, from the ellipsis drop-down menu, select Import from source.

In the Import user groups dialog box, from the Import from drop-down menu, select the vIDMAuthSource - VMware Identity Manager instance as an authentication source.

In the Domain name text box, enter the domain name.

In the Search prefix text box, enter the name of the Active Directory group for the Administrator role according to your values in the VMware Cloud Foundation Planning and Preparation Workbook and click Search.

Select the group and click Finish.

On the Warning dialog box, Click Yes.

On the group name that was just added, click the ellipsis and click Edit.

On the Edit User Group page, in the Assign Roles and Scope section, configure the following settings and click Save.

Repeat this procedure for the ContentAdmin and the ReadOnly roles.

Start PowerShell.

Replace the values in the sample code with values from your VMware Cloud Foundation Planning and Preparation Workbook and run the commands in the PowerShell console.

$sddcManagerFqdn = "sfo-vcf01.sfo.rainpole.io"
$sddcManagerUser = "[email protected]"
$sddcManagerPass = "VMw@re1!"

$domainFqdn = "sfo.rainpole.io"
$operationsAdminGroup = "gg-vrops-admins"
$operationsContentAdminGroup = "gg-vrops-content-admins"
$operationsReadOnlyGroup = "gg-vrops-read-only"

Perform the configuration by running the command in the PowerShell console.

Import-vROPSUserGroup -server $sddcManagerFqdn -user $sddcManagerUser -pass $sddcManagerPass -domain $domainFqdn -groupName $operationsAdminGroup -role Administrator

Import-vROPSUserGroup -server $sddcManagerFqdn -user $sddcManagerUser -pass $sddcManagerPass -domain $domainFqdn -groupName $operationsContentAdminGroup -role ContentAdmin

Import-vROPSUserGroup -server $sddcManagerFqdn -user $sddcManagerUser -pass $sddcManagerPass -domain $domainFqdn -groupName $operationsReadOnlyGroup -role ReadOnly