Use user and identity management options to map users in VMware Workspace ONE Access to roles available that are available in vRealize Suite Lifecycle Manager.

Configuring VMware Workspace ONE Access is a mandatory process before you install any suite products. If you have not installed VMware Workspace ONE Access when installing vRealize Suite Lifecycle Manager, you are prompted to configure and proceed.

Deployment of an identity manager through vRealize Suite Lifecycle Manager is either through a single node or a cluster with an Internal PostgreSQL database embedded in the appliance and does not support an external database like Microsoft SQL. vRealize Suite Lifecycle Manager supports scale-out of the VMware Workspace ONE Access. For more information, see Scale out Workspace ONE Access for high availability.

After you deploy a global environment successfully, under Identity and Tenant Management Service you can view.
  • Directory Management
  • User Management
  • Tenant Management
Following are the available roles.
  • LCM Cloud Admin
  • Content Developer
  • Content Release Manager
  • Certificate Administrator

Even though the vRealize Suite Lifecycle Manager Cloud Admin has access to the VMware Workspace ONE Access service, only a few services in Settings tab like NTP Server Setting, SNMP, DNS, My VMware, and Binary Mapping are accessed. Only LCM Admin, the admin@local has the privilege to access all the settings in the VMware Workspace ONE Access service. The default admin@local user is the only application admin who can access the User Management service, where Directory Management and Identity Management are handled.

Note: With migration from earlier versions of vRealize Suite Lifecycle Manager to the current vRealize Suite Lifecycle Manager version, the VMware Workspace ONE Access Admin and VMware Workspace ONE Access Cloud Admin roles are converged into VMware Workspace ONE Access Cloud Admin. All users who were part of VMware Workspace ONE Access Admin in the previous versions of vRealize Suite Lifecycle Manager would now become VMware Workspace ONE Access Cloud Admin in vRealize Suite Lifecycle Manager.
Adding VMware Workspace ONE Access is an optional step and by configuring VMware Workspace ONE Access with single sign-on across vRealize Suite Lifecycle Manager and products can be achieved.
Note: When VMware Workspace ONE Access is used with vRealize Suite Lifecycle Manager, only Active Directory over LDAP and Active Directory with IWA are used to sync users and groups to the VMware Workspace ONE Access service. Active Directory over LDAP and Active Directory with IWA are the only supported directory integration.