Assign vCenter Single Sign-On administrative, global permissions to the operations service account svc-vr so that you can manage and configure virtual machine replication for disaster recovery operations between the management vCenter Server instances by using vSphere Replication. After you configure the rights of the svc-vr account, reconnect the vSphere Replication instance to the Platform Services Controller in Region A using the secure account and the Platform Services Controller load balancer address.

Table 1. Configuration Changes on vSphere Replication after Upgrade

Region

vSphere Replication Management Interface URL

Old Single Sign-On Account

New Single Sign-On Account

Old Lookup Service URL

New Lookup Service URL

Region A

https://mgmt01vrms01.sfo01.rainpole.local:5480

administrator@vsphere.local

svc-vr@rainpole.local

mgmt01psc01.sfo01.rainpole.local

sfo01psc01.sfo01.rainpole.local

Procedure

  1. Log in to vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://mgmt01vc01.sfo01.rainpole.local/vsphere-client.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. From the Home menu, select Administration.
  3. Assign the service account svc-vr@rainpole.local to the Single Sign-On Administrators group
    1. In the vSphere Web Client, navigate to Administration and click Users and Groups.
    2. On the Groups tab, click the Administrators group and click the Add Member icon under Group Members.
    3. In the Add Principals dialog box, from the Domain drop-down menu, select rainpole.local, in the filter box type svc, and press Enter.
    4. From the list of users and groups, select the svc-vr user, click Add, and click OK.




    The global vCenter Single Sign-On administrative permissions of the svc-vr account propagates to all other linked vCenter Server instances.

  4. Change the connection settings of the vSphere Replication appliance and reconnect it to the Platform Services Controller pair and Management vCenter Server.
    1. Open a Web browser and go to https://mgmt01vrms01.sfo01.rainpole.local:5480.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      root

      Password

      vr_sfo_root_password

      The virtual appliance management interface of the vSphere Replication instance opens.

    3. On the VR tab, click Configuration, enter the following settings, and click Save and Restart Service.

      You change the administrator vCenter Single Sign-On account to the svc-vr service account and the lookup service address mgmt01psc01.sfo01.rainpole.local to the address of the Platform Services Controller load balancer sfo01psc01.sfo01.rainpole.local.

      Setting

      Value

      Configuration Mode

      Configure using the embedded database

      LookupService Address

      sfo01psc01.sfo01.rainpole.local

      SSO Administrative Account

      svc-vr@rainpole.local

      Password

      svc-vr_password

      VRM Host

      172.16.11.123

      VRM Site Name

      mgmt01vc01.sfo01.rainpole.local

      vCenter Server Address

      mgmt01vc01.sfo01.rainpole.local

      vCenter Server Port

      80

      vCenter Server Admin Mail

      vcenter_server_admin_email

    4. In the Confirm SSL Certificate dialog box, click Accept.