You can use your VMware Cloud organization's single sign-on (SSO) to access your VMware Cloud Director instances by creating an SSO integration either during the initial setup of VMware Cloud Director service or through the Integrations tab on the left of the VMware Cloud Director service console.
When you create a VMware Cloud Director instance, VMware Cloud Director service creates an OAuth app for this instance in the VMware Cloud organization and configures the VMware Cloud Director instance to point to this OAuth app. As a result, VMware Cloud services becomes the identity provider for the VMware Cloud Director instance.
Because only a VMware Cloud organization owner can create OAuth apps in VMware Cloud, when a user without this set of rights attempts to create a VMware Cloud Director instance, SSO cannot be configured for that instance.
When a VMware Cloud organization owner creates an SSO integration between VMware Cloud Director service and the VMware Cloud organization, VMware Cloud Director service acquires the right to create OAuth apps on behalf of all users in the VMware Cloud organization.
As a result, all users can create a VMware Cloud Director instance that uses VMware Cloud services as its identity provider.
Prerequisites
Verify that you are a VMware Cloud organization owner.
Procedure
- Log in to VMware Cloud Director service.
- If you are an enterprise customer, log in at https://console.cloud.vmware.com.
- If you are a CSP-SaaS partner, log in at https://navigator.vmware.com.
- Click Integrations.
- Click Add Integration.
- Select SSO Integration and click Next.
- Enter your credentials and click Create SSO Integration.
Results
An OAuth app is created in VMware Cloud Director service. You can edit or delete the OAuth app later if you need to.
