Purpose:
This property allows administrators to specify a whitelist of DNS aliases or short names that are permitted for accessing the vCenter Server web interface (vSphere Client) through Single Sign-On (SSO). By default, vCenter might only accept access using its fully qualified domain name (FQDN) or IP address. Adding aliases to this whitelist enables users to access vCenter using alternative, more user-friendly names, such as a short hostname or a specific alias configured in DNS.
Configuration:
To configure
sso.serviceprovider.alias.whitelist: SSH to the vCenter Server Appliance and Navigate to the vsphere-ui directory.Code
cd /etc/vmware/vsphere-ui/Edit the webclient.properties file.
Code
vi webclient.properties- Locate the
sso.serviceprovider.alias.whitelistproperty. It might be commented out with a ‘#’ symbol. - Uncomment the line (if necessary) and add the desired aliases, separated by commas.
Code
sso.serviceprovider.alias.whitelist=alias1,alias2,shortnameFor example: sso.serviceprovider.alias.whitelist=vcsa70,devcenter.test.local Save and exit the editor and Restart the vSphere Client service.
Code
service-control --stop vsphere-ui service-control --start vsphere-uiBenefits:
- Improved Usability: Allows users to access vCenter with shorter, more memorable names.
- Flexibility: Accommodates different naming conventions or specific network configurations, such as NAT environments where access might be through a NAT router’s IP address.
