To enable the integration of NSX-T with vIDM, you must provide information about the vIDM host.

The vIDM server should have a certificate signed by a certificate authority (CA). Otherwise, logging in to vIDM from NSX Manager might not work with certain browsers, such as Microsoft Edge or Internet Explorer 11. For information about installing a CA-signed certificate on vIDM, see https://docs.vmware.com/en/VMware-Identity-Manager/3.1/vidm-install/GUID-B76761BF-4B12-4CD5-9366-B0A1A2BF2A8B.html.

When you register NSX Manager with vIDM, you specify a redirect URI that points to NSX Manager. You can provide either the fully qualified domain name (FQDN) or the IP address. It is important to remember whether you use the FQDN or the IP address. When you try to log in to NSX Manager through vIDM, you must specify the host name in the URL the same way, that is, if you use the FQDN when registering the manager with vIDM, you must use the FQDN in the URL, and if you use the IP address when registering the manager with vIDM, you must use the IP address in the URL. Otherwise, login will fail.

Prerequisites

Procedure

  1. From your browser, log in with admin privileges to an NSX Manager at https://nsx-manager-ip-address.
  2. Select System > Users from the navigation panel.
  3. Click the Configuration tab.
  4. Click Edit.
  5. Provide the following information.
    Parameter Description
    VMware Identity Manager Appliance The fully qualified domain name (FQDN) of the vIDM host.
    Client ID The ID that is created when registering NSX Manager to the vIDM host.
    Client Secret The secret that is created when registering NSX Manager to the vIDM host.
    Thumbprint The certificate thumbprint of the vIDM host.
    NSX Appliance The IP address or fully qualified domain name (FQDN) of NSX Manager. If you specify a FQDN, you must access NSX Manager from a browser using the manager's FQDN in the URL, and if you specify an IP address, you must use the IP address in the URL. Alternatively, the vIDM administrator can configure the NSX Manager client so that you can connect using either the FQDN or the IP address.
  6. Click Save.