Login using Active Directory credentials vSphere web client 5.5 (Domain is not listed in Permission)

VMware vCenter 5.1 and before the default behavior was to allow all domain admins to login and administrate your ESXi hosts. Once the 5.5 vCenter installed if you try and connect using a domain account you will get the error :The vSphere Client could not connect to “FQDN / IP”. You do not have permission to login to the server: FQDN / IP


To get domain credentials to work you need to login to the VMware vSphere Web Client and setup the relevant permissions.

So how to login to vCenter using web client if domain users are not allowed?

Well that will be the one you configured when you installed vCenter and known as the vCenter Single Sign on.

From my case the login would be administrator@vsphere.local and the password would be what I entered. Insert these details into the VMware vSphere Web Client and click Login.

Once logged in you will see the vCenter Home.Click on Administration

Under Single Sign-On , Select configuration , and select Identity Sources tab

Click on Add button (Plus icon), Select the Source type ( I choose AD integrated windows authentication), and click ok

Once it is configured properly , Go back to vCenter home

Click on vCenter on the left hand side , Then click on vCenter Servers

Click on your vCenter server on the left. Then click manage on the right.
Click on the permissions button

Then choose your added Domain add your relevant groups / users who you want to administrate your ESXi hosts.

Set the privileges to the user

Now you are allowed to login using that particular account to access vCenter Server

This site uses Akismet to reduce spam. Learn how your comment data is processed.