Hello Everybody,
i have a question regarding an internet facing vRA 7 deployment.
As far as i understood the documentation, the only services which must be avaiable from the public internet are:
- VMware vRA Appliance Web Server (Port 443)
- VMware vRA Appliance VMRC Proxy (Port 8444)
All other services and ports are internal only.
User Accounts required to work with vRA are local user accounts within the vRA tennants or directory services (LDAP, ADS etc) connected to the the tennents.
I'd like to show you a drawing from our small deployment:
For Understanding: DNS zone xxx.server.yyy.de is only resolving inside corporate network and no public DNS zone. DNS record privatecloud.yyy.de is a public DNS record resolvable from the internet.
Is this a valid configuration?