thecloudxpert

Configuring Multi-Org Tenancy in vRA 8.x - Part 8: Integrating the Embedded Orchestrator

vRealize Automation vRealize Orchestrator vRA vRO Multi-Tenancy

Published on 4 November 2020 by Christopher Lewis. Words: 352. Reading Time: 2 mins.

In this post, we will walk through how to configure the integration for the embedded (shared) vRealize Orchestrator into the additional customer tenants.

In this series of posts, we will be taking a look at how to configure a Multi-Organization Tenancy (aka Multi-Tenancy) in vRealize Automation (vRA) 8.x.

For more information on the rest of the posts in this series, click here .

The “Problem”

Unfortunately, once vRA Multi-Tenancy has been enabled and a new tenant has been configured, the embedded vRO gets decoupled due to the changes to the platform (including the creation of a new vIDM tenant for each additional vRA tenant).

If you try to access the shared Orchestrator service from within any of the additional tenants, you should get the following error:

Don’t worry, there is an easy fix for this. We just need to configure a new vRO Integration endpoint for each of the vRA tenants (or at least each tenant where we want to do something with vRO). So let’s go ahead and do that.

Configuration

  1. Navigate to https://tenant.vra.fqdn and click GO TO LOGIN PAGE.
  1. Enter the Username and Password for a Cloud Assembly Administrator and then click Sign in.
  1. Click Cloud Assembly.
  1. Click Infrastructure.
  1. Click Integrations.
  1. Click ADD INTEGRATIONS.
  1. Click vRealize Orchestrator.
  1. At the Name field, type a friendly name for this integration.
  1. At the vRealize Orchestrator URL field, type https://tenant.vra.fqdn:443 and click VALIDATE.
  1. If prompted with an Untrusted Certificate Found dialog, click ACCEPT.
  1. Click ADD.

Now when we try and access the Orchestrator Service from within a tenant (assuming you have been given access through RBAC), you will be able to access it just like you did before.

Summary

In this post we have covered how to configure the embedded vRO instance on a per tenant basis. If we take atep back from the detail, we can see that the configuration of the integration for an external vRO is not any different. That is, assuming you have deployed the external vRO instance and configured vRO to use vRA as an authentication source (rather than vCenter Server). It is just a URL change after all.

Published on 4 November 2020 by Christopher Lewis. Words: 352. Reading Time: 2 mins.


Blog Categories: VMware vRealize Automation
Related Post(s):
Recent Posts:

Blog Categories:
active directory 6 aria automation 8 aria operations 2 aws 2 blog 1 career 1 certificate authority 5 certificates 1 certification 91 cloud management 1 cloudnativecon 1 community 1 fun 1 general 9 hands on labs 1 home lab 2 kubecon 1 kubernetes 1 microsoft 7 nsx 45 nsx v 41 powercli 8 powershell 6 professional 1 reviews 1 vcap 48 vcap6 2 vcenter server 4 vcix 2 vexpert 9 vmug 5 vmware 99+ vmware aria 1 vmware aria automation 8 vmware aria operations 3 vmware cloud 3 vmware cloud director 1 vmware explore 2 vmware identity manager 2 vmworld 36 vrealize automation 79 vrealize automation saltstack config 1 vrealize business 2 vrealize log insight 1 vrealize operations 1 vrealize operations manager 5 vrealize orchestrator 11 vrealize suite 14 vrealize suite lifecycle manager 20 vsan 5 vsphere 9 windows 6
Top Tags:
active directory 6 api 18 barcelona 24 certificates 15 certification 7 howto 42 microsoft 7 multi tenancy 9 nsx v 43 platform services controller 8 powercli 8 powershell 7 psc 6 vcap 8 vcap6 45 vcap6 cma 47 vcap6 nv 37 vcix6 nv 36 vexpert 19 vmug 8 vmware 99+ vmware aria 9 vmware aria automation 8 vmworld 35 vmworld 2016 13 vmworld 2017 9 vra 13 vrealize 7 vrealize automation 74 vrealize operations 8 vrealize orchestrator 20 vrealize suite lifecycle manager 11 vrslcm 20 vsan 7 vsphere 12