I've spoken to many customers about Zerto 10 and one of the hottest topics of late is how they can integrate Zerto with Active Directory for user, group, and role-based management of the new Linux Zerto Virtual Manager via Keycloak, which Zerto has opted to use as they moved away from relying on vSphere Permissions for access management into Zerto. The feedback I've received is that many have had trouble following some of the published documentation, so I decided to give it a try myself and document my experience in hopes of clarifying the process. What I had found is that yes, there is documentation, but there is also some pre-requisite knowledge involved, and some of the steps can be difficult to follow in order.
After going through this at least 6 times in the past week, I've not only memorized how to do this (LOL), but have found a good set of steps to follow in order to get this completed much quicker. Like all good plans, it's good to lay out the steps you need to accomplish and put them into an order that makes sense and provides the least amount of resistance or back-peddling.
Key documents used in this video:
User Federation LDAP Provider: help.zerto.com...
Importing a Certificate to Keycloak (related to Zerto): help.zerto.com...