You can register the Orchestrator server to work with a vCenter Single Sign-On server by running a Configuration workflow or by using the REST API.

About this task

For information about configuring the vCenter Single Sign-On authentication service by using the Orchestrator configuration interface, see Configuring vCenter Single Sign-On Settings.

Procedure

  1. Make a GET request at the URL of the Configure SSO Workflow service.
    GET https://{vcoHost}:{port}/vco/api/workflows?conditions=name=Configure SSO
  2. Retrieve the definition of the Configure SSO workflow.
    GET
    https://{vcoHost}:{port}/vco/api/workflows/9ff67fbc-411c-47c7-af80-c81b1215b516
  3. Make a POST request at the URL that holds the execution objects of the Configure SSO workflow.
    POST
    https://{vcoHost}:{port}/vco/api/workflows/9ff67fbc-411c-47c7-af80-c81b1215b516/executions
  4. Provide values for the input parameters of the workflow in an execution-context element in the request body.

    Option

    Description

    mode

    The authentication mode

    ssoHost

    The URL of the machine on which vCenter Single Sign-On is installed

    ssoPort

    The vCenter Single Sign-On server port

    tokenServiceURL

    The URL for the vCenter Single Sign-On token service interface

    adminServiceURL

    The URL for the vCenter Single Sign-On administration service interface

    ssoAdminUser

    The vCenter Single Sign-On administrator user name

    ssoAdminPassword

    The vCenter Single Sign-On administrator password

    clockTolerance

    The time difference between a client clock and a domain controller clock

    vcoAdminGroup

    The vCO Admin domain group