Unable to change vSphere Integrated Containers registry instance authentication from local database to LDAP after populating the database with users and projects
search cancel

Unable to change vSphere Integrated Containers registry instance authentication from local database to LDAP after populating the database with users and projects

book

Article ID: 340347

calendar_today

Updated On:

Products

VMware vSphere ESXi

Issue/Introduction

Symptoms:
Option to toggle from local user management that uses a database to LDAP authentication is grayed out.
 


Environment

VMware vSphere Integrated Containers 1.0.x

Cause

LDAP Authentication is disabled due to database being populated with user's and projects.
 

Resolution

To resolve this issue, identify the supported procedure to Configure Registry with LDAP. If LDAP Authentication is required, this option must be enabled when first logging into a new registry instance before any projects or users are created. If the Database is already populated with projects and users, a redeploy of the vSphere Integrated Containers Registry Instance is required. After the redeploy has occurred, follow the outlined procedure.
 
Note: Redeploying the vSphere Integrated Containers Registry Instance will result in data loss.
 
To create LDAP and Project:
 
  1. Log in as admin user to the vSphere Integrated Containers Registry interface at https://vic_appliance_address:443.
If you configured the vSphere Integrated Containers appliance to use a different port for vSphere Integrated Containers Registry, replace 443 with the appropriate port.
  1. Expand Administration on the left, select Configuration > Authentication, and set the Auth. Mode.
    • To use local user management, check if Auth. Mode is set to Database.
    • To implement LDAP or Active Directory authentication, select LDAP.
  2. If you selected LDAP authentication, type the details of your LDAP or Active Directory service, click Test LDAP Server, and click Save if the test is successful.
  3. Use the Project Creation drop-down to set the users who can create projects.
    • Select Everyone to allow all users to create projects
    • Select Admin Only to allow only users with the Administrator role to create projects
  4. Click Save to save the authentication settings.


Additional Information

Configure a Registry

Powered by Wolken Software