VMware Lightwave is an identity and management access service for Cloud-Native apps. It was released to the community last year and the source code can be accessed in VMware’s Github. Since I’m revamping my homelab to become more cloud-native aware Lightwave was the natural choice to provide authentication services, I decided to setup a multi-node domain to be able to test different Lightwave scenarios.
First of all we will need two VMware Photon virtual machines with static IP addresses and unique hostnames, these will be our domain controllers. Then on each of them list the available repositories for tdnf.
If the lightwave is not there we need to add it. Go to /etc/yum.repos.d/ and create the file lightwave.repo, edit it and add the following content.
Then check that if the repository photon-extras is present and if not repeat the same process but with the below content.
Install vmware-lightwave-server package.
Configure first domain controller
With Lightwave Server installed in both nodes promote the first one to domain controller. Provide the domain, in my case lightwave.local and the administration password.
Now that our fist domain controller is ready lets create our first user in the domain. For this task we will use dir-cli command, also in /opt/vmware/bin path.
Configure second domain controller
To configure the second domain controller we will use the same ic-promote command but with the --partner option to indicate the primary domain controller.
Join the domain
With both domain controllers configured now we are going to join one Photon Docker host to the domain in order to verify the setup. First we need to install the client tools, configure the same lightwave and photon-extras repositories and install vmware-lightwave-clients package.
With the client tools installed use the command ic-join to join the domain.
And we are done, in a future post I’ll show you how to enable SSH access against Lightwave.