When attempting to add a new Identity Source in vCenter Single Sign-On, the option for Active Directory (Integrated Windows Authentication) is no longer available in the Identity Source Type drop-down menu.

VMware vCenter 9.0

This is expected behavior.

Integrated Windows Authentication (IWA) has been deprecated and is no longer supported in vCenter 9.0.
Consequently, vCenter 9.x appliances can no longer be joined directly to an Active Directory (AD) domain.

Workaround / Alternative Configuration:
If you require Active Directory users to log in to vCenter, you must configure an alternative identity source, such as Active Directory over LDAP (LDAPS).

If you are upgrading from a previous version of vCenter to 9.0, you will encounter a pre-check error if the appliance is currently joined to a domain.
You must leave the Active Directory domain before proceeding with the upgrade.

For more details and configuration steps, refer to the following documentation and Knowledge Base articles:

• IWA Deprecation Details: Removal of Integrated Windows Authentication (KB 314324)

• Upgrade Pre-check Error: "Leave the vCenter Server from Active Directory domain before proceeding" pre-check error message during VCF 9.0 upgrade (KB 373004)

• Supported Identity Sources: Identity Sources for vCenter with vCenter Single Sign-On (vSphere 9.0 Docs)

• LDAPS Configuration Steps: Configuring a vCenter Single Sign-On Identity Source using LDAP with SSL (LDAPS) (KB 316596)

vCenter 9.0 で ID ソースを追加する際に「統合 Windows 認証」オプションが表示されない