To initiate a trust establishment between two cloud sites running VMware Cloud Director Availability instances, initiate pairing from either of the two sites. Then, to complete establishing the trust, repeat the pairing procedure in the remote site.

To pair site A and site B, both running version 3.5 or later, repeat the steps twice and perform the pairing procedure in both cloud sites:
  1. In cloud site A, initiate pairing with site B.
  2. In cloud site B, complete pairing with site A.

Prerequisites

  • Verify that, before pairing sites, the versions of VMware Cloud Director Availability in both sites can interoperate together. For the pairing interoperability, see Managing Connections Between Cloud Sites.
  • Verify that in both cloud sites, all the VMware Cloud Director Availability appliances are configured:
    • Cloud Replication Management Appliance
    • Cloud Replicator Appliance instances
    • Cloud Tunnel Appliance

Procedure

  1. Log in to the management interface of the Cloud Replication Management Appliance.
    1. In a Web browser, go to https://Appliance-IP-Address/ui/admin.
    2. Select Appliance login or SSO login and enter the root or the single sign-on user credentials.
    3. Click Login.
  2. In the left pane under Configuration, click Peer Sites.
  3. On the Cloud sites page, click New Pairing.
  4. In the New Pairing window, configure the pairing with the remote cloud site, and to initiate the trust between the local and the remote cloud sites click Pair.
    Option Description
    Site name Enter a local site name, exactly matching the remote cloud site name.
    Service Endpoint Enter the public URL of the Service Endpoint, external for the remote cloud site. For network port, enter the externally DNAT-ed port, by default port 443. In case both Tunnel Services are internally visible between the two cloud sites, you can enter the internal URL or private IP address of the Tunnel Service and enter port 8048 for direct communication.

    For example, enter https://remote-vcda.provider.com:443.

    Description Optionally, enter a description for the paired cloud site.
  5. To complete the first half of the pair process, verify the thumbprint and accept the remote Cloud Service SSL certificate.
    VMware Cloud Director Availability initiates the trust between the two cloud sites.
  6. To complete the pairing, repeat this procedure and log in to the remote cloud site, then pair with the local site.
    VMware Cloud Director Availability establishes the trust between the two cloud sites.
  7. Under Cloud sites, verify that the new cloud site is listed and does not show any errors.

What to do next

You can configure new replications, after modifying the default replication policy for both the source and for the destination organization to allow replications. Alternatively, a custom replication policy that is assigned to the source and to the destination organizations must allow replications. For information about the replication policy, see Configuring Replication Policies in the VMware Cloud Director Availability User Guide.