Hello guys,
Scenario
- VMware vCenter Server Appliance 5.1
- SSO with Active Directory registered as an authentication repository
- A "Base DN" for users and groups was informed during the configuration process...
- There is an AD group I've called "GS_VMWARE_ADMINS" with my VMware admins inside...
What's happening
I've noticed that ANY user within the OU that I've declared in the "Base DN for Users" during the SSO + AD integration configuration is being authenticated in vSphere WebClient. In Windows vSphere Client these users are being blocked as expected.
Ok... that non-members of my "GS_VMWARE_ADMIN" group can login the WebClient... thankfully all options are unaccesssible. Thanks god...
What I'm expecting
I'm expecting that only user within the group GS_VMWARE_ADMINS are able to authenticate in the vSphere WebClient... not every single user in the department, even with the restrictions...
What am I missing to get this working this way?
Regards,
FABrizzolla