After you have successfully installed the Platform Services Controller instance, you must add the appliance to your Active Directory domain. After that, add the Active Directory domain as an identity source to vCenter Single Sign-On. Users in the Active Directory domain are then visible to vCenter Single Sign-On and can be assigned permissions to view or manage SDDC components.

Procedure

  1. Log in to the administration interface of the Platform Services Controller.
    1. Open a Web browser and go to https://sfo01w01psc01.sfo01.rainpole.local.
    2. Click the link for Platform Services Controller web interface.
    3. Log in using the following credentials.

      Setting

      Value

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. Add the Platform Services Controller instance to the Active Directory domain.
    1. In the Navigator, click Appliance Settings,  click the Manage tab, and click Join.
    2. In the Join Active Directory Domain dialog box, enter the following settings, and click OK.

      Setting

      Value

      Domain

      sfo01.rainpole.local

      User name

      svc-domain-join@rainpole.local

      Password

      svc-domain-join_password
  3. To apply the changes, reboot the Platform Services Controller instance.
    1. Click the Appliance settings tab, and click the VMware Platform Services Appliance link.
    2. Log in to the VMware vSphere Appliance Management interface with the following credentials.

      Setting

      Value

      User name

      root

      Password

      psc_root_password
    3. On the Summary page, click Reboot.
    4. In the System Reboot dialog box, click Yes.
    5. Wait for the reboot process to finish.
  4. Log in to https://sfo01w01psc01.sfo01.rainpole.local again using the following credentials.

    Setting

    Value

    User name

    administrator@vsphere.local

    Password

    vsphere_admin_password

  5. Verify that the Platform Services Controller has successfully joined the domain, click Appliance Settings and click the Manage tab.
  6. Add Active Directory as a vCenter Single Sign-On identity source.
    1. In the Navigator, click Configuration and click the Identity Sources tab.
    2. To add a new identity source, click the Add icon.
    3. In the Add Identity Source dialog box, select the following settings and click OK

      Setting

      Value

      Identity source type

      Active Directory (Integrated Windows Authentication)

      Domain name

      SFO01.RAINPOLE.LOCAL

      Use machine account

      Selected
    4. Under Identity Sources, select the rainpole.local identity source and click Set as Default Domain to make rainpole.local the default domain.
    5. In the confirmation dialog box, click Yes.