Good afternoon,
I am unable to assign permissions to (oddly) most of my AD users. I am able to add the domain "administrator" and "guest" user accounts and the domain "domain users" group. I am unable to add any other domain user or groups.
Scenario:
Select VM and go to Permission tab > Right Click and Add Permission > Add > Select the Domain > (after it lists the users in the domain) Search for a user > Select the username to be added > Add > Check Names > ERROR ("The following names were not found: xxxxxx").
This issue only occurs if I log in to the vSphere vServer via the vSphere client. I am able to add all domain users and groups if I log directly into the ESXi host(s) via the vSphere client.
Additional Info
This is in a virtualised lab for purposes of practising.
I have promoted an instance of MS Server 2008 R2 to a domain controller. The domain is at the highest level (2008).
vCenter Server is located on a seperate (not promoted to be a DC) instance of MS Server 2008 R2.
I have 2 x ESXi 5 hosts.
Both instances of MS Server 2008 R2 have (now) been fully updated.
I have tried:
Restarting everything individually and together, including stopping and restarting the vSphere server service.
Adjusting the AD values within vSphere's vCenter Server Settings>Active directory (e.g AD timeout, query limit) as recommended in other articles.
Changing the login user credentials for the vCenter Server service between local settings and domain credentials.
Logging into the vSphere Server via the vSphere client using different credentials, local and domain.
[edit] Removed/rejoined the MS server 2008 R2 VM that contained vsphere server from/to the domain.
I find it strange that I am able to add some domain users but not others. I am unsure where to go from here so any help in solving this problem would be greatly appreciated.
Thanks
Josh
[edit] Something that I had forgotten to mention and am now thinking may be the cause of my issue is that I have uninstalled and reinstalled vCenter Server on the same host. Both times I installed the vCenter Server I have used the local database option available during installation. Could I have inadvertently created a communication error between the vCenter server and the domain controller?