Platform Services Controller Domain

When you install a Platform Services Controller, you are prompted to create a vCenter Single Sign-On domain or join an existing domain.

The domain name is used by the VMware Directory Service (vmdir) for all Lightweight Directory Access Protocol (LDAP) internal structuring.

With vSphere 6.0 and later, you can give your vSphere domain a unique name. To prevent authentication conflicts, use a name that is not used by OpenLDAP, Microsoft Active Directory, and other directory services.

After you specify the name of your domain, you can add users and groups. It usually makes more sense to add an Active Directory or LDAP identity source and allow the users and groups in that identity source to authenticate. You can also add vCenter Server or Platform Services Controller instances, or other VMware products, such as vRealize Operations, to the domain.

Platform Services Controller Sites

You can organize Platform Services Controller domains into logical sites. A site in the VMware Directory Service is a logical container for grouping Platform Services Controller instances within a vCenter Single Sign-On domain.

Starting with vSphere 6.5, sites become important. During Platform Services Controller failover, the vCenter Server instances are affinitized to a different Platform Services Controller in the same site. To prevent your vCenter Server instances from being affinitized to a Platform Services Controller in a distant geographic location, you can use multiple sites.

You are prompted for the site name when you install or upgrade a Platform Services Controller. See the vCenter Server Installation and Setup documentation.