As a system administrator, you must configure smart card authentication for your
vRealize Automation deployment using Directories Management.
Directories Management supports multiple identity providers and connector clusters for each configured Active Directory. To use smart card authentication, you can set up either a single external connector or a connector cluster with an appropriate identity provider behind a load balancer that permits SSL passthrough.
There are various certificate configuration options available for use with smart card authentication. See
Configuring a Certificate or Smart Card Adapter for Use with Directories Management.
Configure an appropriate Active Directory connection for use with your
vRealize Automation deployment.
Download the OVA file required to configure a connector from
VMware vRealize Automation Tools and SDK.
Log in to the
vRealize Automation console as a tenant administrator.
Generate a Connector Activation Token Before you deploy the connector virtual appliance to use for smart card authentication, generate an activation code for the new connector from the vRealize Automation console. The activation code is used to establish communication between Directories Management and the connector.
Deploy the Connector OVA File After downloading a connector OVA file, you can deploy it using the VMware vSphere Client or vSphere Web Client.
Configure Connector Settings After deploying the connector OVA, you must run the Setup wizard to activate the appliance and configure the administrator passwords.
Apply Public Certificate Authority When Directories Management is installed, a default SSL certificate is generated. You can use the default certificate for testing purposes, but you should generate and install commercial SSL certificates for production environments.
Create a Workspace Identity Provider You must create a Workspace identity provider for use with an external connector.
Configure Certificate Authentication and Configure Default Access Policy Rules You must configure your external connection for use with your vRealize Automation Active Directory and domain.