Problem Definition:

In this example, we will demonstrate how to create a Private Domain on CloudConnect, which replicates with an existing on-premise Active Directory Domain. This greatly reduces the risk and time to migrate complex existing environments or use CloudConnect as a hybrid solution.

 

Resolution:

Use the following PDF Instructions (also attached at the bottom of this page) to help guide you through the process of extending your existing Active Directory Domain to CloudConnect.

Additional Information:

An overview of the required steps are:


This procedure requires a working knowledge of managing Active Directory Domain Services as well as VPN/IPSec tunnels.

This procedure requires an on premise VPN capable firewall. In this example we use a SonicWALL NSA running SonicOS.

This procedure takes approximately 2 hours to complete. After running through this procedure, existing user accounts in the existing domain will be able to logon to CloudConnect using their existing Active Directory Identity, username and password.

Once authenticated on either side of the VPN tunnel, the user will not be prompted for authentication between on premise and Cloud resources, as Kerberos authentication will be used.

 

Applies To:

VMware vCloud Director

Windows Server 2008

Windows Server 2012

Windows Server 2016