Before you deploy and configure vRealize Suite 2019 and Workspace ONE Access on VMware Cloud Foundation, you must provide a specific configuration of Active Directory users and groups. You use these users and Active Directory groups for application login, for assigning roles, and for application-to-application authentication.

Active Directory Service Accounts

In an environment that has parent and child domains in a single forest, store service accounts in the parent domain and user accounts in each of the child domains. By using the group scope attribute of Active Directory groups, you manage resource access across domains.

Active Directory Administrator Account

Some installation and configuration tasks require a domain account with elevated permissions to add computer objects to the Active Directory domains.