Basic admin tasks using Web Client – add AD to SSO

Quick guide for beginners hot to add Active Directory as a authentication identity source to VMware vSphere Single Sign On server.

  • Log in to vCenter SSO via vSphere web client https://<IP_ADDRESS_OFF_SSO_SERVER>:9443/
  • Provide credentials:
    • username: admin@System-Domain
    • password: the same password which was set during SSO installation process
  • From home screen go to Administration –> Sign-on and discovery –> Configuration –> from Identity sources tab click on green plus to add new identity source
SSO identity source add

SSO identity source add

  • Provide necessary informations:
    • Primary server URL: Primary AD domain controller – format is ldap://<FQDN_OR_IP>
    • Secondary server URL:  second AD domain controller – format same as above
    • base DN for users (optional)
    • Domain name
    • Domain alias (optional)
    • base DN for groups (optional)
    • authentication type
    • username
    • pasword
  • test connection
  • Add new authentication entity into default domains, click on blue circle in Identity source tab


Basically that ‘s is all what one has to do, should work without problems :-).

SSO AD configuration

SSO AD configuration


Artur Krzywdzinski

Artur is Consulting Architect at Nutanix. He has been using, designing and deploying VMware based solutions since 2005 and Microsoft since 2012. He specialize in designing and implementing private and hybrid cloud solution based on VMware and Microsoft software stacks, datacenter migrations and transformation, disaster avoidance. Artur holds VMware Certified Design Expert certification (VCDX #077).