After you have successfully installed the Platform Services Controller instance, you must add the appliance to your Active Directory domain. After that add the Active Directory domain as an identity source to vCenter Single Sign-On. When you do, users in the Active Directory domain are visible to vCenter Single Sign-On and can be assigned permissions to view or manage SDDC components.

Repeat this procedure twice, once for the of the management cluster and again for the shared edge and compute cluster.

1

Log in to the Platform Services Controller administration interface.

a

Open a Web browser and go to the URL for either the Management or Edge/Compute cluster.

Setting

Management Value

Edge/Compute Value

PSC Link

https://mgmt01psc51.lax01.rainpole.local

https://comp01psc51.lax01.rainpole.local

b

Click the link for Platform Services Controller web interface.

c

Log in using the following credentials.

Setting

Value

User name

administrator@vsphere.local

Password

vsphere_admin_password

2

Add the management Platform Services Controller instance to the Active Directory domain.

a

In the Navigator, click Appliance Settings,  click the Manage tab, and click Join.

b

In the Join Active Directory Domain dialog box, enter the following settings and click OK.

Setting

Value

Domain

lax01.rainpole.local

User name

ad_admin_acct@lax01.rainpole.local

Password

ad_admin_password

3

Reboot the Platform Services Controller instance to apply the changes.

a

Click the Appliance settings tab, and click the VMware Platform Services Appliance link.

b

Log in to the VMware vCenter Server Appliance administration interface with the following credentials.

Setting

Value

User name

root

Password

psc_root_password

c

On the Summary page, click Reboot.

d

In the System Reboot dialog box, click Yes.

e

Wait for the reboot process to finish.

4

After the reboot process finishes, log in to https://mgmt01psc51.lax01.rainpole.local/ using the following credentials.

Setting

Value

User name

administrator@vsphere.local

Password

vsphere_admin_password

5

Verify that the Platform Services Controller has successfully joined the domain, click Appliance Settings, and click the Manage tab.

6

In the Navigator, click Configuration, and click the Identity Sources tab.

Verify that the rainpole.local domain is available as an Identity Source.

7

Repeat this procedure for the Platform Services Controller of the shared edge and compute cluster.