Table of Contents
Advertisement
What to do next
If you have selected the Enable LDAPS option, you must download the certificate from the LDAP server on
to your local machine and add it to the vCenter Chargeback keystore. To do this, on the machine on which the
load balancer service is running, you must then run the following command:
Installation_Path \VMware\VMware vCenter Chargeback\jre\bin> keytool -import -trustcacerts -
keystore "
Installation_Path \VMware\VMware vCenter Chargeback\jre\lib\security\cacerts" -alias
file_alias -file " LDAP_Server_Certificate_Path "
Installation_Path refers to the location where vCenter Chargeback is installed on the machine. file_alias refers
to any user-defined alias for the certificate file. LDAP_Server_Certificate_Path refers to the complete file path
along with the name of the LDAP server certificate on the local machine.
When you run the
keystore. The default password is
and you are prompted to confirm whether you trust the certificate. Type
certificate to the keystore.
You can now add the Windows Active Directory users and groups to vCenter Chargeback so that they can
access the application using their Windows Active Directory login credentials. To know more about adding
LDAP users and groups to the application, see
Edit the LDAP Server Setting
After you have configured an LDAP server in the application, you can modify its details any time, provided
you have the required privileges. For instance, if the LDAP user account password is changed on the LDAP
server, you must also reflect this change in vCenter Chargeback.
To perform this task, you must have the Super User role or the Administrator role. If you have the
Administrator role, you can only edit those LDAP server settings that you have configured.
N
Changes to the LDAP server settings might impact the corresponding LDAP users and groups that are
OTE
already added to the application.
Procedure
1
In the Settings tab, click LDAP Servers.
2
Select the required LDAP server from the table displayed on the page.
3
Click Edit.
The Manage LDAP Server screen is displayed.
4
Modify the required LDAP server setting.
Option
Server Name
Server Address
User Name
Password
BaseDN
Port
VMware, Inc.
command, you are prompted to enter the password for the vCenter Chargeback
keytool
. After entering the correct password, the certificate is be displayed
changeit
Description
A user-defined name to uniquely identify the LDAP server. You can provide
a full name or a short code to identify the LDAP server.
Static IP address of the LDAP server. If the sever does not have a static IP
address, ensure that you provide the fully-qualified domain name (FQDN).
The LDAP account to authenticate in to the LDAP server. The user name can
be of the formats user_name@domain_name or domain_name\user_name.
Preferably, use the User Principal Name (UPN).
Password for the user name provided.
vCenter Chargeback automatically fetches the root base dn and uses this
value.
Port on which the LDAP service is listening. The default port is 389. If you
select the Enable LDAPS option, ensure that you change this to a secure port,
say 636.
Chapter 3 Configuring Administration Settings
yes
"Creating Users,"
on page 67.
and press Enter to add the
43
Advertisement
Table of Contents
Troubleshooting
