This article explains the impact scope and expected behavior on the following systems during an appliance or service restart of VMware Identity Manager (vIDM) for maintenance activities such as troubleshooting, certificate renewal, patching, or upgrades:

• Login impact on Aria Suite products (Aria Automation, Aria Operations, Aria Suite Lifecycle, etc.)
• Impact on virtual machines (VMs) running on ESXi hosts

VMware Identity Manager 3.3.7

The impact on each component during a vIDM stop/restart for maintenance or troubleshooting is as follows:

1. Login impact on Aria Suite products
   
   As the authentication service becomes unavailable when vIDM is stopped, logging into the portals and user interfaces by directory-federated users (such as Active Directory domain users) will be temporarily unavailable for Aria products configured with vIDM as their authentication provider. Logins will automatically become possible once the vIDM service has fully started.
   
   Note: Logins using local accounts for each product (e.g., admin or admin@local) that do not route through vIDM are not affected. However, to prevent unexpected state inconsistencies in the federated environment, it is recommended to refrain from operations such as configuration changes on the Aria products while vIDM is stopped, except in emergencies.
   
   
2. Impact on virtual machines (Guest OS)
   
   There is no impact.
   Restarting management/control plane components such as vIDM or Aria products will not cause any downtime or disconnection to the operation, network communication, or business services provided within the guest OS of virtual machines running on ESXi hosts.

VMware Identity Manager (vIDM) 再起動時における Aria 製品群の認証および仮想マシンへの影響について

Note: Regarding the impact on environments integrated with VMware Horizon

In environments where vIDM is also used as an integrated application catalog (Identity Provider) for Horizon, the following behaviors occur while vIDM is stopped:

• • New logins: Launching new Horizon virtual desktops or published applications via the Workspace ONE Access portal will be temporarily unavailable.
  • Existing sessions: The sessions of users who are already connected to and using Horizon desktops or applications will not be disconnected. Since the post-authentication screen transfer protocol communication does not involve vIDM, continuous use is possible.