vRealize Automation uses VMware Identity Manager to authenticate users.

About this task

Each tenant must be associated with at least one directory as part of the tenant creation. You can add more directories if necessary. Perform the procedure by using the vra-localrainpoleadmin that you configured.

Procedure

  1. Log in to the vRealize Automation Rainpole portal.
    1. Open a Web browser and go to https://vra01svr01.rainpole.local/vcac/org/rainpole.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      vra-localrainpoleadmin

      Password

      vra-localrainpoleadmin_password

  2. Navigate to Administration > Directories Management  > Directories.
  3. Click Add Directory and select Add Active Directory over LDAP/IWA, specify the following settings, and click Save & Next.

    Setting

    Value

    Directory Name

    rainpole.local

    Directory Type

    Active Directory (Integrated Windows Authentication)

    Sync Connector

    vra01svr01a.rainpole.local

    Authentication

    Yes

    Directory Search Attribute

    sAMAccountName

    Certificates

    Deselected

    Domain Name

    rainpole.local

    Domain Admin Username

    domain administrator

    Domain Admin Password

    domain_admin_password

    Bind User UPN

    svc-vra@rainpole.local

    Bind DN Password

    svc-vra_password

  4. On the Select the Domains page, select rainpole.local (RAINPOLE), and click Next.

  5. On the Map User Attributes page, click Next.
  6. On the Select the groups (users) you want to sync page, enter the group DNs to sync.
    1. Click the Add icon to add the distinguished name to the search criteria.
    2. In the Specify the group DNs text box, enter dc=rainpole,dc=local and click Find Groups.
    3. After the Groups to sync value updates, click the Select button.

    4. Select the following groups and click Save.
      • ug-vra-admins-rainpole

      • ug-vra-archs-rainpole

      • ug-SDDC-Admins

      • ug-SDDC-Ops

      • ug-vROAdmins

    5. Click Next.
  7. On the Select the Users you would like to sync page, enter the user DNs to sync.
    1. Click the Add icon to add the distinguished name to the search criteria.
    2. In the Specify the user DNs text box, enter cn=users,dc=rainpole,dc=local, click the Add icon on the same row, and click Next.

  8. On the Review page, click Sync Directory