How do VSatellites work?¶
VSatellites rely on discovery services, which are designed to help distribute the work of machine identity management across multiple VSatellites.
About discovery services¶
In TLS Protect Cloud, a discovery service is a machine identity management function. TLS Protect Cloud includes several types of machine identity management functions, two of which include
- internal discovery service
- external discovery service
Typically, you'd schedule these services to run at particular times.
Services are the live machine identity management functions that run inside of VSatellites. However, not all services require you to deploy a VSatellite. Using a TLS Protect Cloud web console, you can view the status and last known state of each VSatellite.
About VSatellite Workers¶
In addition to VSatellites, TLS Protect Cloud also makes use of VSatellite Workers to support Microsoft Active Directory Certificate Services (AD CS) integration. A VSatellite Worker is installed on a separate Windows Server, and it connects a Microsoft AD CS server to a VSatellite.