To prepare the vCloud Automation Center Appliance for use, a system administrator configures the host settings, generates an SSL certificate, and provides SSO connection information.

1

Navigate to the vCloud Automation Center Appliance management console by using its fully qualified domain name, https://vcac-va-hostname.domain.name:5480/.

2

Continue past the certificate warning.

3

Log in with user name root and the password you specified when you deployed vCloud Automation Center Appliance.

4

Select vCAC Settings > Host Settings and click Resolve Host Name to view the name of the currently specified host.

5

(Optional) If you want to change the host name, enter the fully qualified domain name, vcac-hostname.domain.name, of the vCloud Automation Center Appliance. If you are using a load balancer, enter the fully qualified domain name for the load balancer server.

6

Click Save Settings.

7

Click SSL.

8

Select the certificate type from the Choose Action menu. If you are using a PEM encoded certificate, for example for a distributed environment, select Import PEM encoded certificate.

Certificates that you import must be trusted and must also be applicable to all instances of vCloud Automation Center Appliance and any load balancer by using Subject Alternative Name (SAN) certificates.

Option

Action

Import a certificate

a

Copy the certificate values from BEGIN PRIVATE KEY to END PRIVATE KEY, including the header and footer, and paste them in the RSA Private Key text box.

b

Copy the certificate values from BEGIN CERTIFICATE to END CERTIFICATE, including the header and footer, and paste them in the Certificate Chain text box.

c

(Optional) If your certificate has one, copy the pass phrase that encrypts the private key of the certificate that you are importing, and paste it in the Pass Phrase text box.

Generate a self-signed certificate

a

Type a common name for the certificate in the Common Name text box. You can use the fully qualified domain name of the virtual appliance (hostname.domain.name) or a wild card, such as *.mycompany.com. If you use a load balancer, you need to specify the FQDN of the load balancer or a wildcard that matches the name of the load balancer. Do not accept a default value if one is shown, unless it matches the host name of the virtual appliance.

b

Type your organization name, such as your company name, in the Organization text box.

c

Type your organizational unit, such as your department name or location, in the Organizational Unit text box.

d

Type a two-letter ISO 3166 country code, such as US, in the Country text box.

9

Click Replace Certificate, even if you are generating a new certificate.

After a few minutes the certificate details appear on the page. If you are using a load balancer, the certificate is for the load balancer.

10

Configure the SSO settings that the vCloud Automation Center Appliance uses to interact with the Identity Appliance. These settings must match the settings you entered when configuring the Identity Appliance.

a

Click SSO.

b

Type the fully qualified domain name of the Identity Appliance, identity-va-hostname.domain.name in the SSO Host text box. Do not use an https:// prefix.

For example, vcac-sso.mycompany.com.

c

The default port number, 7444, is displayed in the SSO Port text box. Edit this value if you are using a non-default port.

d

Do not modify the default tenant name, vsphere.local, in the SSO Default Tenant text box.

e

Type the default administrator name administrator@vsphere.local in the SSO Admin User text box.

f

Type the SSO administrator password in the SSO Admin Password text box. The password must match the password you specified in the SSO settings for the Identity Appliance.

g

Click Save Settings.

After a few minutes, a success message appears and SSO Status is updated to Connected.

h

(Optional) If the spinner does not stop within a few minutes, exit the appliance, close the browser, and log in again.

11

Continue past the certificate warning.

12

Log in with user name root and the password you specified when you deployed vCloud Automation Center Appliance.

13

Select vCAC Settings > Host Settings and click Resolve Host Name to view the name of the currently specified host.

14

(Optional) If you want to change the host name, enter the fully qualified domain name, vcac-hostname.domain.name, of the vCloud Automation Center Appliance. If you are using a load balancer, enter the fully qualified domain name for the load balancer server.

15

Click Save Settings.

16

Select the certificate type from the Choose Action menu. If you are using a PEM encoded certificate, for example for a distributed environment, select Import PEM encoded certificate.

Certificates that you import must be trusted and must also be applicable to all instances of vCloud Automation Center Appliance and any load balancer by using Subject Alternative Name (SAN) certificates.

Option

Action

Import a certificate

a

Copy the certificate values from BEGIN PRIVATE KEY to END PRIVATE KEY, including the header and footer, and paste them in the RSA Private Key text box.

b

Copy the certificate values from BEGIN CERTIFICATE to END CERTIFICATE, including the header and footer, and paste them in the Certificate Chain text box.

c

(Optional) If your certificate has one, copy the pass phrase that encrypts the private key of the certificate that you are importing, and paste it in the Pass Phrase text box.

Generate a self-signed certificate

a

Type a common name for the certificate in the Common Name text box. You can use the fully qualified domain name of the virtual appliance (hostname.domain.name) or a wild card, such as *.mycompany.com. If you use a load balancer, you need to specify the FQDN of the load balancer or a wildcard that matches the name of the load balancer. Do not accept a default value if one is shown, unless it matches the host name of the virtual appliance.

b

Type your organization name, such as your company name, in the Organization text box.

c

Type your organizational unit, such as your department name or location, in the Organizational Unit text box.

d

Type a two-letter ISO 3166 country code, such as US, in the Country text box.

17

Click Replace Certificate, even if you are generating a new certificate.

After a few minutes the certificate details appear on the page. If you are using a load balancer, the certificate is for the load balancer.

18

Configure the SSO settings that the vCloud Automation Center Appliance uses to interact with the Identity Appliance. These settings must match the settings you entered when configuring the Identity Appliance.

a

Click SSO.

b

Type the fully qualified domain name of the Identity Appliance, identity-va-hostname.domain.name in the SSO Host text box. Do not use an https:// prefix.

For example, vcac-sso.mycompany.com.

c

The default port number, 7444, is displayed in the SSO Port text box. Edit this value if you are using a non-default port.

d

Do not modify the default tenant name, vsphere.local, in the SSO Default Tenant text box.

e

Type the default administrator name administrator@vsphere.local in the SSO Admin User text box.

f

Type the SSO administrator password in the SSO Admin Password text box. The password must match the password you specified in the SSO settings for the Identity Appliance.

g

Click Save Settings.

After a few minutes, a success message appears and SSO Status is updated to Connected.

h

(Optional) If the spinner does not stop within a few minutes, exit the appliance, close the browser, and log in again.

19

Click Messaging. The configuration settings and status of messaging for your appliance is displayed. Do not change these settings.

20

Click Services.

The following services must be running before you can install a license or log in to the console. They usually start in about 10 minutes.

advanced-designer-service

approval-service

branding-service

catalog-service

component-registry

content-management

eventlog-service

files-service

iaas-proxy-provider

licensing-service

management-service

notification-service

plugin-service

portal-service

shell-ui-app

sts-service

workitem-service

Note

You can also log in to the appliance and run tail -f /var/log/vcac/catalina.out to monitor service startup.

21

Configure the license to enable the Infrastructure tab on the vCloud Automation Center console.

a

Click vCAC Settings > Licensing.

b

Click Licensing.

c

Type a valid vCloud Automation Center license key that you downloaded when you downloaded the installation files, and click Submit Key.

Note

If you experience a connection error, you might have a problem with the load balancer. Check network connectivity to the load balancer.

22

Confirm that you can log in to the vCloud Automation Center console.

a

Open a browser and navigate to https://vcac-hostname.domain.name/vcac.

b

Accept the vCloud Automation Center certificate.

c

Accept the SSO certificate.

d

Log in with administrator@vsphere.local and the password you specified when you configured SSO.

The console opens to the Tenants page on the Administration tab. A single tenant named vsphere.local appears in the list.