VMware Aria Operations for Logs authentication through vIDM
search cancel

VMware Aria Operations for Logs authentication through vIDM

book

Article ID: 426991

calendar_today

Updated On:

Products

VMware vRealize Log Insight 8.x VMware Aria Operations (formerly vRealize Operations) 8.x VCF Operations/Automation (formerly VMware Aria Suite)

Issue/Introduction

Administrators can authorize VMware Identity Manager (vIDM) users for accessing VMware Aria Operations for Logs.

Environment

  • Aria Operations for Logs 8.18
  • VMware Identity Manager 3.x

Cause

This article provides a step-by-step guide to configuring authentication for VMware Aria Operations for Logs through VMware Identity Manager (vIDM). It includes how to obtain necessary credentials from vIDM and configure the integration with Aria Operations for Logs.

Resolution

Step 1: Register Aria Operations for Logs in the Service Catalog and create the login users within vIDM (VMware Identity Manager).

  1. After the user is created, the user will set their own password via a link sent to their E-mail.

  2. Alternatively, you can assign the service to an existing user.

Step 2: Configure Aria Operations for Logs to Use vIDM

After obtaining the User credentials, proceed to configure VMware Aria Operations for Logs to authenticate users via vIDM.

  1. Log in to VMware Aria Operations for Logs as an administrator credential.

  2. Navigate to Configuration.

  3. Under Configuration, selectAuthentication.

  4. Click the three dots (ellipsis) in the upper-right corner of Workspace ONE Access and select 'Edit'.

  5. Enter the details.

  6. Click SAVE.

Step 3: Add Users in VMware Aria Operations for Logs

  1. Log in to the Aria Operations for Logs GUI as an admin.

  2. Go to Management → Access Control → User and Groups.

  3. Click '+ NEW USER'

  4. Authentication : Workspace ONE Access.

  5. Enter the details.

  6. Set the role for user and SAVE

Step 4: Verifying the Target URL

  1. Access the Aria Operations for Logs UI.

  2. Open the Browser Developer Tools (Press F12) and navigate to the Network tab.

  3. Enter the ID and password linked to vIDM in the login window.

  4. Click "Sign in with WORKSPACE ONE ACCESS."

  5. In the Network tab, look for and click on the entry starting with "authorize?response_type=code&client_id...".

    • Note: Since the page may redirect quickly to the next screen, you can click the "Stop recording" button (red circle icon) in the Developer Tools to freeze the log and capture the request.

  6. Copy Request URL in the General Field.

Step 5: Create a Web Application for Aria Operations for Logs in vIDM

  1.  Go to Catalog → Web Apps.

  2. Click New and enter a name for the web application.

  3. In the Configuration page, select Authentication Type as Web application link.

  4. Set the Target URL in the following format:

    https://YOUR.IDENTITYMANAGER.FQDN/SAAS/auth/oauth2/authorize?response_type=code&client_id=YOURID_auth_grant&&redirect_uri=http://YOUR.AOLOGS.FQDN/login

    (You can capture this URL from the developer tools when attempting to launch the application using Identity Manager.->Step 4)

  5. After configuring the URL, click Save and assign the web application to the desired users/groups.

Powered by Wolken Software