VMware 4817V62 Administration Guide - Page 221
Adjust the Search List in Large Domains, Change Permission Validation Settings, Change Permissions
View all VMware 4817V62 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 221 highlights
Chapter 18 Managing Users, Groups, Roles, and Permissions Adjust the Search List in Large Domains If you have domains with thousands of users or groups, or if searches take a long time to complete, adjust the search settings for use in the Select Users or Groups dialog box. NOTE This procedure applies only to vCenter Server user lists. ESX/ESXi user lists cannot be searched in the same way. Procedure 1 From the vSphere Client connected to a vCenter Server system, select Administration > vCenter Server Management Server Configuration. 2 Click the Active Directory list item. 3 Change the values as needed. Option Active Directory Timeout Enable Query Limit Users & Groups value Description Specifies in seconds the maximum amount of time vCenter Server allows the search to run on the selected domain. Searching very large domains can take a very long time. To specify no maximum limit on the number of users and groups that vCenter Server displays from the selected domain, deselect the check box. Specifies the maximum number of users and groups vCenter Server displays from the selected domain in the Select Users or Groups dialog box. 4 Click OK. Change Permission Validation Settings vCenter Server periodically validates its user and group lists against the users and groups in the Windows Active Directory domain, and removes users or groups that no longer exist in the domain. You can change the interval between validations. Procedure 1 From the vSphere Client connected to a vCenter Server system, select Administration > vCenter Server Management Server Configuration. 2 Click the Active Directory list item. 3 Deselect the Enable Validation check box to disable validation. Validation is enabled by default. Users and groups are always validated when vCenter Server system starts, even if validation is disabled. 4 If validation is enabled, enter a value in the Validation Period text box to specify a time, in minutes, between validations. Change Permissions After a user or group and role pair is set for an inventory object, you can change the role paired with the user or group or change the setting of the Propagate check box. You can also remove the permission setting. Procedure 1 From the vSphere Client, select an object in the inventory. 2 Click the Permissions tab. 3 Click the line item to select the user or group and role pair. VMware, Inc. 221