Deploying vCenter Single Sign-On in Basic mode means that a standalone version of vCenter Single Sign-On is installed on a system. Multiple vCenter Server, Inventory Service, and vSphere Web Client instances can point to this standalone version of vCenter Single Sign-On.

In this deployment scenario, the installation process grants admin@System-Domain vCenter Server privileges by default. In addition, the installation process creates the user admin@System-Domain to manage vCenter Single Sign-On.

Note

When you install vCenter Server components with separate installers, you can choose which account or group can log in to vCenter Server upon installation. Specify this account or group on the Single Sign-On Information page of the installer, in the following text box: vCenter Server administrator recognized by vCenter Single Sign-On. For example, to grant a group of domain administrators permission to log in to vCenter Server, type of name of the domain administrators group, such as Domain Admins@VCADSSO.LOCAL.

In high availablity and multisite Single Sign-On modes, there is no local operating system identity source. Therefore, it will not work if you enter Administrators or Administrator in the text box vCenter Server administrator recognized by vCenter Single Sign-On. Administrators is treated as the local operating system group Administrators, and Administrator is treated me as local operating system user Administrator.

When you log in as a domain account user to install vCenter Single Sign-On in basic mode, on a separate system from the Inventory Service and vCenter Server, the following behavior occurs upon installation.

By default, the user admin@System-Domain can log in to the vSphere Web Client and vCenter Server.

The default Active Directory identity sources are discovered.

The local operating system (localos or hostname) users are added as an identity source.

When you log in as a local account user to install vCenter Single Sign-On in basic mode, on a separate system from the Inventory Service and vCenter Server, the following behavior occurs upon installation.

By default, the user admin@System-Domain can log in to the vSphere Web Client and vCenter Server.

Active Directory identity sources are not discovered.

The local operating system (localos or hostname) users are added as an identity source.