Hi,
i've just installed VCA 5.5, added to AD DS domain with appliance menu. Then after logging to Web Client i tried to add Identity Source with my domain (AD Integrated Windows Authentication). Using machine account or later with SPN.
After adding domain I've switched to Users and Groups and then tried to add AD group to Administrators. But when doing it in Add Principals (switched to AD DS domain) i get empty list and error: "Cannot load users for the selected domain.".
I've even tcpdump communication betwen vCenter and AD DS domain controler and what i can see is:
0050: 3030 3034 4443 3a20 4c64 6170 4572 723a 0004DC: LdapErr:
0060: 2044 5349 442d 3043 3039 3036 4444 2c20 DSID-0C0906DD,
0070: 636f 6d6d 656e 743a 2049 6e20 6f72 6465 comment: In orde
0080: 7220 746f 2070 6572 666f 726d 2074 6869 r to perform thi
0090: 7320 6f70 6572 6174 696f 6e20 6120 7375 s operation a su
00a0: 6363 6573 7366 756c 2062 696e 6420 6d75 ccessful bind mu
00b0: 7374 2062 6520 636f 6d70 6c65 7465 6420 st be completed
00c0: 6f6e 2074 6865 2063 6f6e 6e65 6374 696f on the connectio
00d0: 6e2e 2c20 6461 7461 2030 2c20 7631 3737 n., data 0, v177
00e0: 3200 2.
What's wrong? How can i set it up?
Regards,
p.