• Steps to Configure the Automation Orchestrator Appliance authentication provider on 8.18.x

• You can now configure your Automation Orchestrator options such as the authentication provider with the Automation Orchestrator Appliance command line interface (CLI) only as the earlier existing configuration options in the Control Center have been removed. 

• VMware Aria Automation Orchestrator 8.18.x

• Step to configure the Authentication Provider as Aria Automation:
   
  • Login to the VRO/VRA appliance as root. 
  • Retrieve the current auth provider by running the command: 

vracli vro authentication

• • Configure the Auth provider by using the guided wizard:

vracli vro authentication wizard

• • After running the authentication wizard command, you are prompted to provide the necessary authentication provider information such as the type of authentication provider, hostname, and password.

    

    In the above example, I selected VMware Aria Automation as my auth provider and, hence, option 1. 

• Steps to configure the Authentication Provider as vSphere:
  
  
  • Login to the VRO/VRA appliance as root. 
  • Retrieve the current auth provider by running the command: 
    

    vracli vro authentication

  •  

    Configure the Auth provider by using the guided wizard:
    
    vracli vro authentication wizard

  • After running the authentication wizard command, you are prompted to provide the necessary authentication provider information such as the type of authentication provider, hostname, and password.
  • Select option 2.
  • It will ask you for the below information 
    
    Enter the hostname for the authentication provider: vCENTER_FQDN
Enter an administrator username to authenticate with the provider: [email protected]
Enter the password for [email protected]:
Enter the domain for the Administrator group (i.e. vsphere.local): vsphere.local
Enter the Administrator group name: Administrators
    
    Then you need to accept the vCenter certificate
    
    CN: vCENTER_FQDN
Fingerprint: vCENTER certificate thumbprint
  • You will not get any further messages on a successful configuration.
  • You can run vracli vro authentication to check the current configuration.
  • Output will look like this
    
    # vracli vro authentication
{
  "com.vmware.o11n.sso.redirect.uri": "vro_fqdn",
  "com.vmware.o11n.sso.token.lifetime": "2592000",
  "com.vmware.o11n.sso.svcaccount": "uuid",
  "ch.dunes.authentication.provider": "vsphere",
  "vco.sso.ssl.certificate": "vco.vsphere.lookup-service.ssl.certificate",
  "com.vmware.o11n.sso.admin.group.name": "Administrators",
  "com.vmware.o11n.sso.clock.tolerance.sec": "600000",
  "vco.vsphere.lookup-service.cert.alias": "vco.vsphere.lookup-service.ssl.certificate",
  "com.vmware.o11n.sso.default.tenant": "vsphere.local",
  "com.vmware.o11n.sso.token.renew.count": "10",
  "vco.vsphere.lookup-service.url": "https://vcenter_fqdn/lookupservice/sdk",
  "com.vmware.o11n.sso.svcaccount.password": "password",
  "com.vmware.o11n.sso.admin.user.name": "[email protected]",
  "com.vmware.o11n.sso.serviceprovider-host": "vro_fqdn",
  "com.vmware.o11n.sso.admin.group.domain": "vsphere.local"
    
    
• In case the vracli vro authentication wizard does not work, you can use this command to setup vCenter as the authe
  
  # vracli vro authentication set -p vsphere -hn https://vCenter_fqdn -u [email protected] --tenant vsphere.local --admin-group Administrators --admin-group-domain vsphere.local
  
  
• Once the above command is run you can check the configuration again using # vracli vro authentication

Configuring the Automation Orchestrator Appliance authentication provider with the command line interface