One of the most appealing feature of any application/solution is it’s ability to provide higher levels of availability and resiliency, it becomes even more important when the solution in question places a critical role in your business, like a self-service portal where your clients request any kind of service and been server almost instantly providing agility and faster time to market value to your business.
vRealize Automation, when configured in a highly available deployment, provides this level of availability, enabling clustered services for all it’s components, but there’s one piece of the solution that is common over looked, Directories Management.
As a Tenant administrator, it’s pretty common to configure a directory over LDAP to provide user’s authentication, this way your users could benefit from using it’s already familiar user’s id and password to authenticate into the portal.
The support of user’s authentication in vRA is made through the use of connectors, each vRA appliance is a connector itself, but typically only one connector is configure to perform directory synchronization.
In order to provide Directories Management in high availability you must configure a second connector, with this configuration if one appliance fails the second one takes over the management of user’s authentication.
To configure a second connector, go to Administration / Directory Management / Identity Providers and click on the specific provider.
Click add connector and select the additional connector, make sure both connectors are enabled.
Last piece is to change the IdP hostname to point to your’s vRA VIP address.
Please, be aware that this configuration should be done on each Tenant.
Have you been configuring your Directories Management in high availability ?
