Site
Recovery Manager release 6.0 improves security by obtaining a
security assertion markup language (SAML) token from the
vCenter Single
Sign-On service for both the local and remote sites.
Table 1. Functions for Logging
Into Sites
Function
Description of Operation
GetSolutionUserInfo
Obtain the UUID of
Site
Recovery Manager Server and the
Site
Recovery Manager solution user name.
SrmLoginByTokenLocale
After obtaining a token from
vCenter Single
Sign-On, begin session with the local
Site
Recovery Manager Server
GetPairedSiteSolutionUserInfo
Obtain the remote the UUID of
Site
Recovery Manager Server and the solution user name
SrmLoginRemoteSiteByToken
After obtaining remote token, begin session
with the paired
Site
Recovery Manager Server
SrmLoginSitesByToken
Log in to both local and remote
Site
Recovery Manager Server, passing both SAML tokens
The following figure shows the
sequence of calling for LoginSitesByToken
Figure 1. Calling Sequence for
LoginSitesByToken
Order of operations
Obtain local token from the
vCenter Single
Sign-On service located on the local
Platform Services Controller.
Get remote site information
from
Site
Recovery Manager, and extract the URL of remote LookupService.
Use remote LookupService to
find the remote
vCenter Single
Sign-On service.
Obtain remote access SAML
token from
vCenter Single
Sign-On service located on the remote
Platform Services Controller.
Make the
SrmLoginSitesByToken call locally to
Site
Recovery Manager.
