HYBR Pre-Requisites

IDENTITY PROVIDERS

HYBR supports two different authentication Identity providers to integrate on it. That is, Azure Active Directory (AAD) & Active Directory Federation Service (ADFS). It allows user to authenticate HYBR Admin & Tenant Portals.

Please prepare Pre-requisites based on Identity provider you are going to use (AAD or ADFS).

AAD Pre-requisites

To integrate AAD with HYBR, we need following details of AAD, please refer page AAD Pre-requisites to get following details from your AAD.

  1. Directory ID

  2. Application ID

  3. Application Client secret

  4. AAD user Account

ADFS Pre-requisites

To integrate ADFS with HYBR, we need following details of ADFS, please refer page ADFS Pre-requisites to get following details from your ADFS.

  1. Application ID

  2. Application Client Secret

  3. Obtain Authority and Metadata address of ADFS 2016

  4. User account for admin

HYBR APPLICATION SERVER (for POC)

  • Operating system: Windows Server 2016/2019

  • RAM: 6 GB

  • Processor: 64 bit, 4 Cores

  • Hard disk: 100 GB for system drive

  • Internet connectivity

  • Static mac address should be assigned

  • PowerShell 5 or above

  • Install SQL Server PowerShell module

  • Web Server (IIS) installed on server machine with .Net Framework 4.7, ASP.Net 4.6 & relevant features and please refer the screenshots.

    1. Web Server (Default Document, Directory Browsing, HTTP Error, Static Content, HTTP Redirection, WebDev Publishing),

    2. Health and Diagnostics (HTTP logging),

    3. Security (Request Filtering, IIS client certificate Mapping Auth, URL Authorization, Windows Authentication),

    4. Application Development (.NET Extensibility 3.5, .NET Extensibility 4.6, ASP.NET 4.6, ISAPI Extensions, ISAPI Filters),

    5. Management tools.

HYBR RESOURCE PROVIDER SERVER (for POC)

  • Operating system: Windows Server 2016/2019

  • RAM: 6 GB

  • Processor: 64 bit, 4 Cores

  • Hard disk: 100 GB for system drive

  • Internet connectivity

  • Static mac address should be assigned

  • PowerShell 5 or above

  • Web Server (IIS) installed on server machine with .Net Framework 4.7, ASP.Net 4.6 & relevant features. please refer the screenshots.

    1. Web Server (Default Document, Directory Browsing, HTTP Error, Static Content, HTTP Redirection, WebDev Publishing),

    2. Health and Diagnostics (HTTP logging),

    3. Security (Request Filtering, IIS client certificate Mapping Auth, URL Authorization, Windows Authentication),

    4. Application Development (.NET Extensibility 3.5, .NET Extensibility 4.6, ASP.NET 4.6, ISAPI Extensions, ISAPI Filters),

    5. Management tools.

HYBR DATABASE SERVER

  • Operating system: Windows Server 2016/2019

  • SQL Server 2016 / 2017

  • RAM: 8 GB or more

  • Hard disk: 100 GB for system drive

  • Processor: 64 bit, 4 Cores

VCONNECT SERVICE (If required)

VConnect is a Resource provider service in HYBR that helps you to manage On-premise and Cloud data-centers.

VCONNECT SERVICE SPECIFIC REQUIREMENT

This is required only if you have opted for VConnect feature. This must be on HYBR resource provider server where VConnect will be installed.

  • VMware vSphere PowerCLI (Supported Versions: 5.5 to 11.2)

  • VMM 2016 Console (latest rollup)

  • AWS CLI (Supported Versions: 1.11.10 to 1.11.13)

  • Azure Power Shell (Supported Versions: 1.5 to 3.0)

POWER SHELL CONFIGURATION

Run the following commands in Power Shell on the HYBR Resource Provider Server and use appropriate thresholds for your environment.

winrm set winrm/config/client '@{TrustedHosts ="powerShellMachine"}'

winrm set winrm/config/client '@{AllowUnencrypted="true"}'

winrm set winrm/config/winrs '@{MaxShellsPerUser="500"}'

Run the following commands in the Windows Power Shell on the HYBR Resource Provider server and use appropriate thresholds for your environment.

Set-Item -Path WSMan:\localhost\Plugin\microsoft.powershell\Quotas\MaxShells - Value 500

Set-Item -Path WSMan:\localhost\Plugin\microsoft.powershell\Quotas\MaxShellsPerUser -Value 500

Set-Item -Path WSMan:\localhost\Plugin\microsoft.powershell32\Quotas\MaxShells - Value 500

Set-Item -Path WSMan:\localhost\Plugin\microsoft.powershell32\Quotas\MaxShellsPerUser -Value 500

Restart-Service winrm

SQL POWER SHELL CONFIGURATION

Run the following commands in Power Shell window in administrator mode on the HYBR Application Server for configuration SQL and use appropriate thresholds for your environment.

install-module sqlserver

update-module sqlserver

import-module sqlserver

VMWare VSPHERE Integration SPECIFIC CONFIGURATION - (Its only required for vCenter configuration)

This is required only for vCenter integration.

  • Clusters that will be configured with VConnect must have DRS turned on in vCenter.

  • Ensure that VM Templates in the vCenter environment used for VM provisioning through VConnect, are created with only 1 core per socket and 1 CPU.

  • vCenter VM templates must not be sys-prepped and VMware tools must installed.

Microsoft System Center Integration SPECIFIC CONFIGURATION – (its only required for Microsoft System Center Integration)

  • Add the VMM server (FQDN) as trusted host in HYBR Resource provider server

winrm set winrm/config/client '@{TrustedHosts ="<VMMserverFQDN>"}'

  • Service provider foundation URL & VMM stamp must be added in SPF server for respective VMM server.

  • Following ports should be accessible from HYBR Resource provide server.

  1. 8090 (SPF)

  2. 5985 (WinRM-http)

  3. 5986 (WinRM-https)

WORKFLOW SERVICE SPECIFIC REQUIREMENTS - (Only required for workflow Feature)

Need not share the below details but be ready with this for workflow configuration.

SMTP and IMAP settings:

  • Host name

  • Port number

  • Username

  • Password