VMware Cloud Community
dmuligan
Enthusiast
Enthusiast
Jump to solution

PSC sites linked mode

What are the differents between a SSO domain in one site and a SSO domain in two sites ?

I mean, if I have 2 datacenters connected by layer 2 ( same ip network) could I use one SSO domain in just one site configuration ? I could use a load balancer to distribute SSO traffic to both datacenters.

Or it´s better to configure it with 2 sites, one in each datacenter ?. In this way,if I want high availability I will need to configure a couple of PSC per datacenter, right ?

Thank you.

1 Solution

Accepted Solutions
Mattallford
Hot Shot
Hot Shot
Jump to solution

‌If you are familiar with Active Directory, then a vsphere SSO domain is similar to an Actice Directory domain, and a vSphere SSO site is similar to an AD site.

SSO sites are not used much in 6.0, but we've heard that sites will become more important in future releases. I suspect one of these reasons will be for some of the built in high availability VMware are hoping to bring into VC.

THe answers to some of your questions will come down to your failure domains and particular environment, but the recommendation would be to have two SSO sites within the vSphere domain, one for each DC. You would then deploy 2 (or more) PSCs per site.

TThe VMware PSC topology decision document should assist as well:

Platform Services Controller Topology Decision Tree - VMware vSphere Blog

Cheers, Matt.

VCP6-DCV | VCAP6-DCV Deploy @mattallford If you found my answers useful, please help me by marking them as Helpful or Correct!

View solution in original post

2 Replies
Mattallford
Hot Shot
Hot Shot
Jump to solution

‌If you are familiar with Active Directory, then a vsphere SSO domain is similar to an Actice Directory domain, and a vSphere SSO site is similar to an AD site.

SSO sites are not used much in 6.0, but we've heard that sites will become more important in future releases. I suspect one of these reasons will be for some of the built in high availability VMware are hoping to bring into VC.

THe answers to some of your questions will come down to your failure domains and particular environment, but the recommendation would be to have two SSO sites within the vSphere domain, one for each DC. You would then deploy 2 (or more) PSCs per site.

TThe VMware PSC topology decision document should assist as well:

Platform Services Controller Topology Decision Tree - VMware vSphere Blog

Cheers, Matt.

VCP6-DCV | VCAP6-DCV Deploy @mattallford If you found my answers useful, please help me by marking them as Helpful or Correct!
derickson9
Contributor
Contributor
Jump to solution

Single Sign-On (SSO) is a method of authentication that allows users to access multiple applications and services with a single set of login credentials. In a SSO domain with one site, all the applications and services are hosted on a single site, and users only need to authenticate once to access all of them.

In a SSO domain with two sites, the applications and services are hosted on two different sites, but users can still access them all with a single set of login credentials. This allows users to easily access application and services from both sites without having to authenticate separately for each one.

The main difference between a SSO domain with one site and a SSO domain with two sites is the number of sites involved. In a SSO domain with one site, all the applications and services are hosted on a single site, whereas in a SSO domain with two sites, the applications and services are split across two different sites. Other than that, the basic concept of SSO remains the same in both cases.

 

 

Reply
0 Kudos