After you have successfully deployed the workload domain, you must add the Workload domain vCenter Server to your Active Directory. Then add the Active Directory domain as an identity source to vCenter Single Sign-On. Users in the Active Directory domain become visible to vCenter Single Sign-On and can be assigned permissions to view or manage components.

Procedure

  1. In a Web browser, log in to the workload domain vCenter Server in Region A by using the vSphere Client.
    Setting Value
    URL https://sfo-w01-vc01.sfo.rainpole.io/ui
    User name administrator@vsphere.local
    Password vsphere_admin_password
  2. Select Menu > Administration.
  3. Under Single Sign On, select Configuration.
  4. On the Configuration page, click the Identity Provider tab and select Active Directory Domain.
  5. Select the sfo-w01-vc01.sfo.rainpole.io radio button and click Join AD.
  6. In the Join Active Directory Domain dialog box, enter the settings, and click Join.

    Setting

    Value

    Domain

    sfo.rainpole.io

    Username

    svc-domain-join

    Password

    svc-domain-join_password

  7. To apply the changes, reboot the vCenter Server appliance.
    1. Open a Web browser and go to https://sfo-w01-vc01.sfo.rainpole.io:5480.
    2. Log in to the vCenter Server Appliance Management Interface with the following credentials.

      Setting

      Value

      Username

      root

      Password

      root_password

    3. On the Summary page, select Actions > Reboot.
    4. In the System Reboot dialog box, click Yes.
    5. Wait for the reboot process to finish.
  8. In a Web browser, log in to the workload domain vCenter Server in Region A by using the vSphere Client.
    Setting Value
    URL https://sfo-w01-vc01.sfo.rainpole.io/ui
    User name administrator@vsphere.local
    Password vsphere_admin_password
  9. Verify that the vCenter Server has successfully joined the domain.
    1. In the Administration inventory, under Single Sign On, select Configuration.
    2. On the Configuration page, select the Active Directory Domain tab.
    3. Select the sfo-w01-vc01.sfo.rainpole.io radio button and verify that it has been joined to the Active Directory domain sfo.rainpole.io.