Tech Short Q&A: What is vCenter Single Sign-On For

What is vCenter Single Sign-On?

vCenter Single Sign-On is a feature of VMware vCenter 5, 6 and future vCenter implementations that is an authentication broker which also creates security tokens providing a secure way of accessing your environments.

This token exchange mechanism is far superior than the former requirement of each component authenticating separately with a directory service such as Active Directory. Its VMware’s answer to identity management

Here are some key capabilities of SSO?

  • add multiple AD domains, OpenLDAP, and the local operating system where SSO is deployed. It also lets you create local users and groups.
  • allows VMware vSphere to connect to a non-AD Identity Source, OpenLDAP.
  • supports the SAML 2.0 standard and WS-TRUST, both of which are open industry standards.
  • lets users delegate tasks to solutions that can run as the identity of the user.
  • supports identity delegation for long-lived tasks with the ability to renew tokens.

follow this link -> VMware vCenter Single Sigion-On for more info on


I hope you enjoyed this techshort, thanks for visiting – jermal

vCloud Air – I want it

From our friends over at VMware we now have news of vCloud Air. A public cloud platform built on the trusted foundation of vSphere, compatible with your on-premises data center, that includes infrastructure, disaster recovery.

With vCloud Air  you can migrate existing onsite virtual machines (VMs) to the public cloud.  vCloud Air’s billing mode uses the IaaS (infrastructure-as-a-service) model making it very appealing for testers and developers looking for short term environments as well is companies looking to expand into new infrastructure without the need to acquire new hardware.

Best of all, its using the same vCenter, ESXi environments you come to know, trust, support and *love.

Checkout the CPU performance and I/O performance comparisons for more information.

vCloud Air has the  Support and Services You Know to help you extend beyond your data center.

Oh and vCloud Air 35% Cheaper Than Azure and 83% Cheaper Than AWS

For more info http://vcloud.vmware.com/

Disable warnings when SSH is enabled vSphere ESXi 5

The following steps are what I used to disable this warning on top of my VSphere Client to manage my ESXi 5.x servers.

  1. Select the ESXi 5.x host server in your Inventory
  2. Select Configuration
  3. Select Advanced Settings on the left under the Software menu
  4. Once selected find your way to the bottom where UserVars is located.
  5. Change the value of UserVars.SuppressShellWarning from 0 to 1
  6. Click OK

Cluster warning for ESXi Shell and SSH appear on an ESXi 5.x

Another way to resolve this is to use the esxcli command via the local console or over ssh.

Connect to the ESXi host using the root credentials and run the following command:

esxcli system settings advanced set -o /UserVars/SuppressShellWarning -i 1




For the source of this info and additional steps please check out the VMware KB 2003637

vSphere – Creating User and Group Permissions

Create Privileges

  1. Click “View | Administration | Roles”
  2. Right client and cick “Add”
  3. Select a name and select the required privileges

Create User

  1. Click on the “Users and Groups” tab
  2. Click on the “Users” button
  3. Right click and select “Add”
  4. Specify the desired User Name, Password, etc and Click “OK”

Create a Local Group

  1. Click on the “Groups” button
  2. Right click and select “Add”
  3. Enter the group name you want and enter the User Name you created above in the User Name field and click Add
  4. Click “OK” to create the group

Assign Permissions

  1. Click on the “Permissions” Tab
  2. Right click and Select “Add Permission”
  3. Click on the “Add” button and select the Group you created above and click on the Add button.
  4. Click on the OK button.
  5. Choose the Assigned Role (Priviages) and click “OK”.

Note : You can use the permissions tab in either the main inventory (main page) or per Virtual Machine. This is useful to know if you need to allow one user to access just one Virtual Machine.

VIM_VCDB database ‘PRIMARY’ filegroup is full (part 2)

After cleaning up your Virtual Center Database to get us back and running I came across the following

vCenter Server 4.x has a Database Retention Policy setting that allows you to specify when vCenter Server tasks and events should be deleted. Since this setting does not affect performance data records it is still possible to purge or shrink old records from the database using the scripts attached to this article. To access the Database Retention Policy setting in the vSphere Client, click Administration > vCenter Server Settings > Database Retention Policy.

By |How-To, Software, Technical|Comments Off on VIM_VCDB database ‘PRIMARY’ filegroup is full (part 2)