Milestone 3 vCenter SSO - InaFricke/SEC-480 GitHub Wiki
Milestone 3 - vCenter Cont. (Updates & SSO)
SSO Integration
- Navigate to https://10.0.17.3:5480
login: root PW: RR32!
-
No updates necessary
-
Select time
Looks correct, I had issues in the previous lab with
- Open a terminal
- (DIDNT WORK)
w32tm /config /manualpeerlist:"pool.ntp.org" /syncfromflags:manual /reliable:YES /update
net stop w32time
net start w32time
w32tm /resync
- Through the GUI on Windows
Open Server Manager > Click Tools → Services > Find Windows Time service > Right-click → Stop
Then go to Control Panel → Date and Time > Click Internet Time tab > Click Change settings Enter server: pool.ntp.org
Restart the windows time service
It would not connect to pool.ntp.org so I am moving on.
Setting up Vcenter
login: [email protected]
PW: RR32!
- Select Administration > Under Single Sign-On, click Configuration
- click AD warning
-
Reset the box
-
Add identity source
- Set as default, repeat
- It will not let ina-adm in so I am creating a new user to troublshoot.
[email protected] RoxiRules32
add to the domain admins group
- Permissions were not right, so I had to log in as administrator and go in and manually add fricke-adm
Final thoughts
-
I could not get the ntp pool to work but they are only off by a minute and I think 5 minutes is when it starts to matter.
-
my ina-adm would not work so I had to make a new one, now I know it was not added in groups (I think)
Video Requirements
Deliverable Checklist:
- Show you're logged in as a domain administrator
Display the vCenter interface
Point out in the top-right corner that you're logged in as [email protected] (or [email protected])
- Show the AD connection and identity provider
Administration → Single Sign On → Configuration → Identity Provider tab
Show that ina.local is listed as an Active Directory identity source Show it's set as default (if applicable)
- Show Domain Admins in Global Permissions
Administration → Access Control → Global Permissions Show that ina.local\Domain Admins has Administrator role