Saturday, December 18, 2010

Join Active Director y domain for XenServer [Citrix Guide]

XenServer is one of well-known Type-I hypervisor in the world. In the new release of 5.6 and 5.6 FP1, you can use Active directory for authentication and permission authorization.  This time, I will show you how to join a domain for XenServer by command line. XenServer must join domain in order to delegate permission.

Firstly, log on your XenServer by SSH or console(like HP iLO ) as root

Like joining a domain for a windows machine, please configure the DNS server for your all XenServers in your pool.

e.g. if your DNS server is 192.168.0.20, type following:


In this example, my domain name is "demo.gx"

Forget all netbios domain name as XenServer does not know what it is.

Type following:

 

The CLi syntax is :
 
xe pool-enable-external-auth auth-type=AD service-name=
config:user= config:pass=

Now you have joined a domain for a XenServer pool.

You can see something like following if you logon XenCenter



Friendly reminder: after joining domain , you can still access XenServer using root account.

PS: Don't ask me why not use XenCenter to do all jobs. you will feel how shit XenCenter is if you use it for administration. ^.^

Next time, I will show you how to assign permission of XenServer to Active Directory users/groups.
張貼者: 位於
標籤:

2 comments:

  1. radams409September 4, 2013 at 10:08 PM

    I am getting the following error when after running the CLI syntax. Please see following error and if you don't mind some guidance on why I am getting this error.

    ERROR:
    The pool failed to enable external authentication.
    message: Failed to look up the domain controller for the given domain.

    Thank you,

    ReplyDelete
  2. phonespinMarch 19, 2014 at 11:02 PM

    set XenServer DNS pointing to your domain controller just like joining Windows machine to domain.

    ReplyDelete

Subscribe to: Post Comments (Atom)