As I have blogged about before, TLS 1.0 and SSL v3 were deprecated in Purity 4.7, requiring all connections to use either TLS 1.1 or TLS 1.2. This affected a variety of integrations, some we updated, some you just had to alter their behavior. A few VMware products do not/did not use TLS 1.1/1.2 by default, so they either need to altered or upgraded. This almost invariably boiled down to the JDK version that was in use. vRealize Orchestrator is no exception.
Starting to mess around with vRealize Orchestrator and just deployed the 6.0.3 vRO appliance. A few gotchas, many of which are well denoted by other blog posts:
- DNS, DNS, DNS!! Pre-configure everything and make sure names are correct
- Certificates, make sure they are accurate
One of the first issues I ran into was registering it with my SSO. My setup has two vCenters with two separate but federated Platform Services Controllers. I wanted to authenticate my vRO instance with SSO, not my Active Directory to keep user management a bit more central to VMware. Ran into some fun gotchas. Continue reading vRealize Orchestrator and vSphere 6 SSO Authentication