To deploy the connector, you install the connector virtual appliance in vCenter Server using the vSphere Web Client, power it on, and activate it using the activation code that you generated in the VMware Identity Manager console.
Download the connector OVA file from the VMware Identity Manager product page on my.vmware.com.
Open the vSphere Web Client, using either Firefox or Chrome browsers. Do not use Internet Explorer to deploy the OVA file.
Identify the DNS records and host name to use for your appliance.Note:
If you plan to set up Kerberos authentication, the connector host name must match the Active Directory domain to which the connector is joined. For example, if the Active Directory domain is sales.example.com, the connector host name must be connectorhost.sales.example.com.
If you cannot assign a hostname that matches the Active Directory domain structure, you need to configure the connector and Active Directory manually. See the Knowledge Base for information.
- In the vSphere Web Client, right-click any inventory object in which a virtual machine can be deployed, such as a host, cluster, or folder, and select Deploy OVF Template.
- Follow the Deploy OVF Template wizard to deploy the VMware Identity Manager connector template.
- In the Select template page, select Local file, click Browse to select the connector OVA file you downloaded, and click Next.
- In the Select name and location page, enter a unique name for the connector virtual appliance, select a datacenter or folder as the deployment location, and click Next.
- In the Select a resource page, select the host, cluster, resource pool, or vApp where you want to run the connector virtual appliance, and click Next.
- In the Review details page, review the connector template details and click Next.
- In the Accept license agreements page, read and accept the license agreement, then click Next.
- In the Select storage page, select the datastore or datastore cluster in which to store the virtual appliance files, then click Next.
Also select the virtual disk format for the files. For production environments, select a Thick Provision format. Use the Thin Provision format for evaluation and testing.
- In the Select networks page, select the destination network to which you want to connect the connector virtual appliance, then click Next.
- In the Customize template page, set the application and network properties.
Join the VMware Customer Experience Improvement Program
This product participates in VMware's Customer Experience Improvement Program ("CEIP"). Details regarding the data collected through CEIP and the purposes for which it is used by VMware are set forth at the Trust & Assurance Center at http://www.vmware.com/trustvmware/ceip.html. If you prefer not to participate in VMware's CEIP for this product, uncheck the box.
You can also join or leave the CEIP for this product at any time after installation.Note:
If your network is configured to access the Internet through HTTP proxy, to send the data collected through CEIP to VMware, you must adjust the proxy settings on the connector virtual appliance. You can change the proxy settings after deploying the connector.Note:
The CEIP is only applicable for on-premises installations of VMware Identity Manager. Make your selections when you install the VMware Identity Manager service. You can also join or leave the CEIP at any time from the administration console after installation.
Select the correct timezone.
Enter values for DNS, Default Gateway, IP Address, and Netmask to configure the static IP address for the connector. If any of these four address fields, or the Host Name field, are left blank, DHCP is used.
In the Host Name (FQDN) text box, enter the fully-qualified host name to use for the connector virtual appliance. If this is blank, reverse DNS is used to look up the host name.
- In the Ready to complete page, review your selections, make any adjustments if needed, and click Finish.
Depending on your network speed, the deployment can take several minutes.
- When the deployment is complete and the connector virtual appliance appears under the inventory object in which you deployed it, right-click the connector virtual appliance and select
The connector virtual appliance is initialized. You can go to the Summary tab and click the virtual appliance console to see the details. When the virtual appliance initialization is complete, the console displays the connector version and the URL for the Setup wizard.
- To run the Setup wizard, point your browser to the connector URL displayed in the virtual appliance console, https://connectorFQDN.
- On the Welcome Page, click Continue.
- Create strong passwords for the following connector virtual appliance administrator accounts.
Strong passwords should be at least eight characters long and include uppercase and lowercase characters and at least one digit or special character.
Create the appliance administrator password. The user name is admin and cannot be changed. You use this account and password to log in to the connector services to manage certificates, appliance passwords and syslog configuration.Important:
The admin user password must be at least 6 characters in length.
A default VMware root password was used to install the connector appliance. Create a new root password.
Create the password to use for remote access to the connector appliance.
- Click Continue.
- On the Activate Connector page, paste the activation code and click Continue.
The activation code is verified and the communication between the VMware Identity Manager service and your connector instance is established.
The connector setup is complete.
What to do next
Click the link on the Setup is Complete page to go to the VMware Identity Manager console. Log in with the temporary administrator user name and password you received for your tenant. Then set up the directory connection.