Have you done this with #vRA 7? Multiple non-trust domains, two vRA appliances behind load-balancer in single instance of vRA. #VMware Does each appliance create a machine account in each domain?
I have two AD domains like I'm looking to add the resource domains within a single vRA 7 instance.
- prodroot.msd & prodroot.resource.msd
- qaroot.msd & qaroot.resource.msd
There is no trust between the two AD domains.
vRA Environment
nsx load-balancer
- vra1
- vra2
- iaas-web1
- iaas-web2
- dem1
- dem2
- agent1
- agent2
From the docs
Multi-Forest Active Directory Environment Without Trust Relationships
A multi-forest Active Directory deployment without trust relationships allows you to sync users and groups
from multiple Active Directory domains across forests without a trust relationship between the domains. In
this environment, you create multiple directories in the service, one directory for each forest.
See “Configure a Link to Active Directory,” on page 86. The type of directories you create in the service
depends on the forest. For forests with multiple domains, select the Active Directory (Integrated Windows
Authentication) option. For a forest with a single domain, select the Active Directory over LDAP option.