With VxRail version 4.7.300 or later, you can join an existing SSO domain during first run. This allows for two VCF on VxRail management WLDs to join the same SSO domain. This must be configured during the deployment of the second VCF instance. This allows for a single-pane-of-glass view for the management and workload domain vCenters at each site. Following are the important factors to consider:
- The vCenters for each VCF instance that participates in the same SSO Domain are connected using Enhanced Link Mode (ELM).
- Maximum number of WLDs is reduced by half.
- Total of 15 WLDs shared across the 2 VCF instances
- This limitation is due to the maximum number of vCenters that can be connected with ELM.
- PSC replication configuration should be in a closed-loop design.
- Recommended Site1 PSC1 > Site1 PSC2 > Site2 PSC1 > Site2 PSC2 > Site1 PSC1
- Manual configuration is required to point Site2 PSC2 back to Site1 PSC.
Figure 41. Shared SSO Domain topology for two VCF Instances
There are some factors that must be considered when it comes to upgrading the PSCs in a VCF multi-instance shared SSO domain deployment. The system administrator must use caution when upgrading VCF instances that are part of the same SSO. The following guidelines must be considered before an upgrade of the VCF instances:
- Keep all VCF instances in the same SSO at the same VCF on VxRail version.
- Upgrades should be performed on each VCF on VxRail system in sequential order.
- Ensure that all VCF instances in the same SSO are at N or N-1 versions.
- Do not upgrade a VCF instance that would result in having a participating VCF instance at an N-2 version.
- The compatibility rules in VCF LCM do not extend to external VCF instances.
There are no safeguards that would prevent a user from upgrading one VCF instance that would break compatibility between the PSCs participating in the shared SSO domain.