The vCenter Single Sign-On Groups tab shows groups in the local domain, vsphere.local by default. You add groups if you need a container for group members (principals).
You cannot add groups to other domains, for example, the Active Directory domain, from the vCenter Single Sign-On Groups tab.
If you do not add an identity source to vCenter Single Sign-On, creating groups and adding users can help you organize the local domain.
Procedure
- From a Web browser, connect to the vSphere Web Client or the Platform Services Controller.
Option |
Description |
vSphere Web Client |
https://vc_hostname_or_IP/vsphere-client |
Platform Services Controller |
https://psc_hostname_or_IP/psc In an embedded deployment, the Platform Services Controller host name or IP address is the same as the vCenter Server host name or IP address. |
- Specify the user name and password for [email protected] or another member of the vCenter Single Sign-On Administrators group.
If you specified a different domain during installation, log in as administrator@
mydomain.
- Navigate to the vCenter Single Sign-On user configuration UI.
Option |
Description |
vSphere Web Client |
- From the Home menu, select Administration.
- Under Single Sign-On, click Users and Groups.
|
Platform Services Controller |
Click Single Sign-On and click Users and Groups. |
- Select the Groups tab and click the New Group icon.
- Enter a name and description for the group.
You cannot change the group name after you create the group.
- Click OK.
What to do next
- Add members to the group.