You must complete the configuration by registering Active Directory, completing the domain join, and adding the Super Administrator.

Note the following:

You must complete the entire Active Directory registration process before you can work with any other services. All services are locked until you complete these tasks.

The Active Directory infrastructure must be synchronized to an accurate time source.

The LDAP bind account is treated by the system as a Super Admin user, so this account should not be shared with any user that does not have Super Admin privileges. For example, if there is another product that also needs an LDAP bind account, a new LDAP account should be created for this purpose so whoever has the new account cannot log in as Super Admin.

In the case of external or forest trusts, root domains must be registered. For more information, see External and Forest Trusts.

1

From the Getting Started page, select General Setup.

2

Under Active Directory, click Configure.

3

In Register Active Directory dialog box, provide the requested registration information.

Option

Description

NETBIOS Name

Active Directory domain name

DNS Domain Name

Fully qualified Active Directory domain name

Protocol

Not editable; LDAP is the only choice

Bind Username

Domain administrator

Bind Password

Domain administrator password

4

Click Advanced Properties.

5

Enter information the Advanced Properties fields.

Option

Description

Port

The default for this field is 389. You should not need to modify this field unless you are using a non-standard port.

Domain Controller IP

(Optional) Specify a single preferred domain controller IP address if you want AD traffic to use a specific domain controller.

Context

This option is auto-populated based on the DNS Domain Name information provided earlier.

6

Click Domain Bind.

7

Provide the domain join information.

Option

Description

Join Username

Domain administrator

Join Password

Domain administrator password

Primary DNS Server IP

IP address of primary DNS Server

Secondary DNS Server IP

(Optional) IP of secondary DNS Server

8

Click Save.

9

In the Add Super Administrator dialog box, use the Active Directory search function to select the AD administrator group to administer the application.

10

Click Save.

11

If the domain bind or domain join process fail, you must restart the registration process.

a

Restart the browser.

b

Log in first using your My VMware account.

c

Log in to the Active Directory account using the domain service (bind) account login and password.

d

Continue with the domain join process.

12

If you click Cancel before you complete the registration, you can click Edit at any time from the Getting Started page to continue with registration.