To initiate a trust establishment between two cloud sites backed by VMware Cloud Director, where each one runs a VMware Cloud Director Availability instance, first initiate pairing from either of the two sites. Then, to complete establishing the trust, repeat the pairing procedure in the remote site.

To pair site A and site B, repeat the steps twice and perform the pairing procedure in both cloud sites:
  1. In cloud site A, initiate pairing with a remote cloud site B.
  2. In cloud site B, repeat the procedure to complete pairing with site A.

Prerequisites

  • Verify that, before pairing sites, the versions of VMware Cloud Director Availability in both sites can interoperate together. For information about the sites interoperability, see Managing pairing with Cloud Director sites.
  • Verify that in both cloud sites, all the VMware Cloud Director Availability appliances are successfully configured:
    • Cloud Director Replication Management Appliance
    • Replicator Appliance instances
    • Tunnel Appliance instances

Procedure

  1. Log in to the management interface of the Cloud Director Replication Management Appliance.
    1. In a Web browser, go to https://Appliance-IP-Address/ui/admin.
    2. Select Appliance login or SSO login and enter the root or the single sign-on user credentials.
    3. Click Login.
  2. In the left pane under Configuration, click Peer Sites.
  3. On the Peer Sites page, click New cloud pairing.
  4. In the New Cloud Pairing window, configure the pairing with the remote cloud site, then to initiate the trust between the local and the remote cloud site, click Pair.
    Option Description
    Site name Enter a local site name, exactly matching the remote cloud site name.
    Public Service Endpoint
    • Enter the public URL address of the Public Service Endpoint, external for the remote cloud site. For the network port, enter the externally DNAT-ed port, by default port 443.

      For example, enter https://remote-vcda.provider.com:443.

    • Only when the Tunnel Service instances are internally visible between both cloud sites, you can enter the internal URL address or the private IP address of the Tunnel Service and enter port 8048 for direct communication across the internal network.
    Description Optionally, enter a description for the paired cloud site.
  5. Complete the first half of the pair process.
    1. Verify the thumbprint and accept the remote Cloud Service SSL certificate.
    2. In the Additional actions required window, click OK.
    VMware Cloud Director Availability initiates the trust between the two cloud sites.

    Visit the Cloud Service in the Site name and repeat these steps to complete the pairing operation.

  6. To complete the pairing between both sites, log in to the remote cloud site and repeat this procedure for pairing with the local site.
    VMware Cloud Director Availability establishes the trust between the two cloud sites.
  7. Under Peer Sites, verify that the new cloud site is listed and does not show any errors.
  8. Before creating any replications, verify that as a provider you added each Cloud Service instance for metering in VMware vCloud® Usage Meter.
    For information about adding the cloud sites instances in vCloud Usage Meter, see vCloud Usage Meter Integration.

What to do next

After ensuring the Cloud Service instances are metered by vCloud Usage Meter, you can now start creating and managing replications. You can configure new replications, after modifying the default replication policy for both the source and for the destination organization to allow replications. Alternatively, a custom replication policy that is assigned to the source and to the destination organizations must allow replications. For information about the replication policy, see Configuring replication policies in the User Guide.