Site Recovery Manager release 6.0 improves security by obtaining a security assertion markup language (SAML) token from the vCenter Single Sign-On service for both the local and remote sites.
Table 1. Functions for Logging Into Sites
Function
Description of Operation
GetSolutionUserInfo
Obtain the UUID of Site Recovery Manager Server and the Site Recovery Manager solution user name.
SrmLoginByTokenLocale
After obtaining a token from vCenter Single Sign-On, begin session with the local Site Recovery Manager Server
GetPairedSiteSolutionUserInfo
Obtain the remote the UUID of Site Recovery Manager Server and the solution user name
SrmLoginRemoteSiteByToken
After obtaining remote token, begin session with the paired Site Recovery Manager Server
SrmLoginSitesByToken
Log in to both local and remote Site Recovery Manager Server, passing both SAML tokens
The following figure shows the sequence of calling for LoginSitesByToken
Figure 1. Calling Sequence for LoginSitesByToken
Order of operations
Obtain local token from the vCenter Single Sign-On service located on the local Platform Services Controller.
Get remote site information from Site Recovery Manager, and extract the URL of remote LookupService.
Use remote LookupService to find the remote vCenter Single Sign-On service.
Obtain remote access SAML token from vCenter Single Sign-On service located on the remote Platform Services Controller.
Make the SrmLoginSitesByToken call locally to Site Recovery Manager.
