AD groups are not replicating in vCenter Server 6.5
Article ID: 324273
Updated On:
Products
VMware vSphere ESXi
Issue/Introduction
Symptoms:
- AD groups are not replicating in vCenter Server when users are moved from one group to another.
- When a user is moved from one LDAP AD group to another new permissions are not updated. However if a user is added directly to the vCenter Server the permissions update instantly.
Cause: This issue is caused by the vpxd service storing the users in the AD group within its memory.
Environment
VMware vSphere 6.5.x
Resolution
To resolve this issue, perform these steps:
In vCenter Server Appliance:
- Make changes within the AD group
- Wait for the replication period (depends on the size of the environment)
- Log in to vCenter Server Appliance through SSH.
- Run this command to stop the vpxd service:
service-control --stop vmware-vpxd
- Run this command to start the vpxd service:
service-control --start vmware-vpxd
Note: User should have the changed permissions once you log in to the web client
In Windows vCenter Server:
- Make changes within the AD group
- Wait for the replication period ( depends on the size of the environment)
- Log in to vCenter server
- Open Command prompt with administrative privileges
- cd C:\Program Files\VMware\vCenter Server\bin
- Run this command to stop the vpxd service:
service-control --stop vmware-vpxd
- Run this command to start the vpxd service:
service-control --start vmware-vpxd
Feedback
Yes
No
Powered by
