Follow the steps below to configure a Security Group based on AD objects and use it to construct DFW rules:
- In the vSphere web client, navigate to Home | Networking & Security.
- Create a security group based on an AD user or group as the source, using the directory group as the object type. In this example, we will create a security group called administrators to include AD object group administrators.
The security group construct can be based on dynamic membership:
Or based on static membership using Select objects to include:
- Create a security policy from the firewall menu or Service ...