The embedded vRealize Orchestrator only supports the following authentication method:

  • vRealize Automation Authentication

Table 1. vRealize Orchestrator Directory Service Design Decision

Decision ID

Design Decision

Design Justification

Design Implication


Embedded vRealize Orchestrator will use the vRealize Automation authentication.

Only authentication method available.



Configure vRealize Orchestrator to utilize the vRealize Automation customer tenant (rainpole) for authentication.

The vRealize Automation Default Tenant users are only administrative users. By connecting to the customer tenant, workflows executing on vRealize Orchestrator may execute with end-user granted permissions.

End-users who will execute vRealize Orchestrator workflows will be required to have permissions on the vRealize Orchestrator server.

Some plug-ins may not function correctly using vRealize Automation Authentication.


A vRealize Orchestrator instance will be associated with only one customer tenant.

To provide best security and segregation between potential tenants, vRealize Orchestrator installation are associated with a single tenant.

If additional vRealize Automation Tenants are configured, additional external vRealize Orchestrator installations will be needed.