vRealize Log insight Integration with Workspace ONE Access for Authentication

Posted by on in , | 171 Views | Leave a response

As you all might know, vRealize Log Insight(vRLI) has the capability of integrating with Workspace ONE Access (Earlier known as VMware Identity Manager) for authentication from vRLI 4.3. Below steps will guide you to configure vRLI with Workspace ONE access for Authentication.

Pre-requisites:

  • Workspace ONE Access deployed and Configured with Active Directory
  • Required Authentication Adapters are enabled like Password, Kerberos or Certificate
  • Workspace ONE Access Local Admin Account for Integration
  • Log in to vRealize Log Insight Web user interface as Local Admin with Edit permission

Steps to Configure Authentication:

  1. Log in to vRealize Log Insight Web user interface as Local Admin and Navigate to Administrator

  2. Click on Authentication under Configuration

  3. Select Enable Single Sign-On and Enter the details of Workspace ONE Access tenant/node. Host: workspace ONE access FQDN, API Port: Default port 443 auto-populated, Username & Password: Local Admin credentials of Workspace ONE Access, Redirect URL Host: Select IP/Host Name of Master Node or Virtual IP of vRealize Log Insight cluster from Drop-Down menu, Allow Active Directory Users Login: Enabled by Default

  4. Click on Test Connection and wait for a Succeeded message

  5. Click on Save and Check the Status changed from UNCONFIGURED to CONNECTED.

  6. Navigate to Access Control under Management and Add User or Group for accessing the vRLI. + NEW USER – Click on New User to add only users, + NEW GROUP – Click on New Group to add groups
  7. Select Authentication as VMware Identity Manager and Type Username then select the desired Role. 

    For Group, Type the Group name that is synced with Workspace ONE access and select desired Role then Save.

     

  8. Now Users will be able to Select VMware Identity Manager as an Authentication method in Log Insight page. Users redirected to the Workspace ONE access page for authentication. Once authenticated, the user redirected to vRLI page based on their Role.

    Reference Documents:

    Enable User Authentication Through VMware Identity Manager: https://docs.vmware.com/en/vRealize-Log-Insight/8.1/com.vmware.log-insight.administration.doc/GUID-3EE9645D-9343-4EB0-BD70-2526EA64259E.html

    This completes the Step-by-step integration of vRealize Log Insight with Workspace One Access/VMware Identity Manager.

    Hope you find this useful. Thanks for reading, Keep sharing.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.