VMware vSphere

Hello,

I know that's not necessarry but just trying...

I have a vMA 4.1 and a ESX 4.0.

By using "putty" I'm connecting to vMA as vi-admin then use vi-fastpass to connect esx. vMA fastpass asks me root pw of esx and I enter.. Then I set the target esx ... Everything is normal...

...but when I try to edit something on esx, it says that I'm not allowed to edit anything on server because of permission restrictions. Could you please goide me how can I connect to esx as root user via vma?

Rather than logging in as root, login as your regular user, and for any command that would require root perf, just preface it with 'sudo'.

I mean that Does vi-admin has no administrative rights on target server? If vi-admin desn't has administrative rights on target server, how can I give these permissions to vi-admin account ?

This should clear up any confusion - http://www.virtuallyghetto.com/2010/11/how-to-configure-and-use-vmas-vi.html

It would also be helpful to understand what command and syntax you're using and if your'e connecting directly to an ESX(i) host or to vCenter

I think I was misunderstood.

The article is about setting up authentication mechanisms (active directory) for vma and esx servers.

My problem is not authentication.

I do like that;

login: vi-admin

password: *****

vifp addserver esx1.testservers.com

enter root pw: *****

vifptarget -s esx1.testservers.com

>>> cd /var/log

nano messages

>>> cannot display because pf permission.

----

Because esx thinks that I'm vi-admin but I want to connect as root, not as vi-admin...

The article was meant to explain vi-fastpass mechanism and how it actually works when you run a command against a target.

What you're actually doing is not changing directory into /var/log on the ESX(i) host, rather the vMA filesystem which the user vi-admin does not have the permission to do so. I think you're miss-understanding on what vMA provides you, it is not actual login access to the ESX(i) filesystem as you would normally when connecting to say ESX classic Service Console

Tirelibirefe wrote:

I think I was misunderstood.

The article is about setting up authentication mechanisms (active directory) for vma and esx servers.

My problem is not authentication.

I do like that;

login: vi-admin

password: *****

vifp addserver esx1.testservers.com

enter root pw: *****

vifptarget -s esx1.testservers.com

>>> cd /var/log

nano messages

>>> cannot display because pf permission.

----

Because esx thinks that I'm vi-admin but I want to connect as root, not as vi-admin...

The nano messages is hapening on the vMA appliance not the ESXi server. Just because you changed the target doesn't mean that all commands apply just the vCLI commands.

Well, are there any ways which work properly to edit/browse these files?

I've added a user (testuser) to my ESX server, it's member of administrator, root, sshd, users and vimuser groups.

esx doesn't let that testuser edit /etc/ssh/sshd_conf by neither ssh(putty) nor WinSCP...

Please help, what kind of a user can edit /etc/ssh/sshd_conf ?

Thanks for answer and care;

Also;

I don't care active directory stuff right now, my goal is not to integrate these server(s) with active directory.

My goal is to connect to ESX as root via vma...

Then use "ssh", there is no coorelation of vi-fastpass and allowing you to directly login to ESX(i) host the way you're trying to connect

root user doesn't has ssh right.

In order to assign ssh right to root user, I tried to edit /etc/ssh/sshd_config but esx doesn't let my new user which is member of root, administrator, ssh, vimuser groups.