Members of a vCenter Single Sign-On group can be users or other groups from one or more identity sources. You can add new members from the vSphere Web Client.

About this task

See VMware Knowledge Base article 2095342 for some background information.

Groups listed on the Groups tab in the Web interface are part of the vsphere.local domain. See Groups in the vCenter Single Sign-On Domain.

Procedure

  1. From a Web browser, connect to the vSphere Web Client or the Platform Services Controller.

    Option

    Description

    vSphere Web Client

    https://vc_hostname_or_IP/vsphere-client

    Platform Services Controller

    https://psc_hostname_or_IP/psc

    In an embedded deployment, the Platform Services Controller host name or IP address is the same as the vCenter Server host name or IP address.

  2. Specify the user name and password for administrator@vsphere.local or another member of the vCenter Single Sign-On Administrators group.

    If you specified a different domain during installation, log in as administrator@mydomain.

  3. Navigate to the vCenter Single Sign-On user configuration UI.

    Option

    Description

    vSphere Web Client

    1. From the Home menu, select Administration.

    2. Under Single Sign-On, click Users and Groups.

    Platform Services Controller

    Click Single Sign-On and click Users and Groups.

  4. Click the Groups tab and click the group (for example, Administrators).
  5. In the Group Members area, click the Add Members icon.
  6. Select the identity source that contains the member to add to the group.
  7. (Optional) : Enter a search term and click Search.
  8. Select the member and click Add.

    You can add more than one member.

  9. Click OK.