Learning VMware vRealize Automation

Learning VMware vRealize Automation

By : SRIRAM RAJENDRAN, Sriram Rajendran

Buy this Book

Learning VMware vRealize Automation

By: SRIRAM RAJENDRAN, Sriram Rajendran

Buy this Book

Overview of this book

With the growing interest in Software Defined Data Centers (SDDC), vRealize Automation offers data center users an organized service catalog and governance for administrators. This way, end users gain autonomy while the IT department stays in control, making sure security and compliance requirements are met. Learning what each component does and how they dovetail with each other will bolster your understanding of vRealize Automation. The book starts off with an introduction to the distributed architecture that has been tested and installed in large scale deployments. Implementing and configuring distributed architecture with custom certificates is unarguably a demanding task, and it will be covered next. After this, we will progress with the installation. A vRealize Automation blueprint can be prepared in multiple ways; we will focus solely on vSphere endpoint blueprint. After this, we will discuss the high availability configuration via NSX loadbalancer for vRealize Orchestrator. Finally, we end with Advanced Service Designer, which provides service architects with the ability to create advanced services and publish them as catalog items.

Learning VMware vRealize Automation

Credits

About the Author

About the Reviewers

www.PacktPub.com

Preface

Free Chapter

vRealize Automation and the Deconstruction of Components

What is vRealize Automation?

Common use cases of vRealize Automation

vRealize Automation – a conceptual diagram

Identity management appliance or SSO or PSC

vRealize Automation or CAFÉ appliance

IaaS – architecture and component deep dive

Model Manager

MSSQL database

Manager Service

Distributed Execution Manager

Summary

Distributed Installation Using Custom Certificates

Getting started

Overview of the installation flow

Certificates

Identity management for authentication and authorization by vRA components

Configuring the external vPostgres DB in HA for the vRealize Automation CAFÉ appliance

Configuring the CAFÉ appliance in HA

IaaS installation

Overview of the IaaS installation flow (only the first nodes)

IaaS WEB installation

Installation of the first Manager Service and DEM Orchestrator node

Installation of the First DEM Worker and Proxy Agent

Proxy Agent installation

Updating the NSX load balancer configuration for WEB and MGR

Summary

Functional Validation – Phase 1 and Installing Secondary Nodes

Validation test

Installing the second active web node

Installing the standby Manager Service and the DEM Orchestrator node

Installing the second DEM Worker and proxy agent

Health monitor URL

Summary

Configuring a Guest OS for vRealize Automation vSphere Blueprints

Guest agents

Preparing the vSphere guest OS template

GOS – Windows

GOS – Linux

Summary

Functional Validation – Phase 2 and Zero to VM Provisioning

An overview of creating a service catalog

Providing the required permissions in the vSphere Endpoint

Creating and configuring credentials

Configuring the vSphere Endpoint

Configuring fabric groups

Configuring the machine prefix

Creating business groups

Configuring reservation policies

Configuring VM template and VM customization specifications in vCenter

Creating a vSphere blueprint

Creating a service

Configuring a catalog item

Creating an entitlement

Requesting a service catalog

Monitoring deployment status

Things to remember

Summary

Testing Failover Scenarios for vRealize Automation Components

vRealize Automation components and HA modes

Failover of the identity management appliance

Failover of vPostgres

Failover of CAFÉ appliance

Failover of Model Manager Web

Failover of Manager Service

Failover of DEM Orchestrator

Failover of DEM Worker and proxy agent

Summary

vRealize Orchestrator in High Availability via the NSX Load Balancer

Types of Orchestrator configuration

Planning and preparing

Infrastructure details

Configuring the vRealize Orchestrator cluster

Orchestrator NSX load balancer configurations

vRealize Orchestrator high availability mechanism

Configuring vRO at CAFÉ or IaaS makes a difference!

Summary

The Power of Advanced Service Designer (ASD)

Advanced Service Designer overview

Enabling the ASD tab in vRA

Service blueprint

Summary

Index

Customer Reviews

5 star

4 star

3 star

2 star

1 star

Certificates

SSL certificates are commonly used for a secure handshake between different services. In vRA, all communications between the client browser and services (identity management, CAFÉ, and IaaS) and between services are over TLS/SSL. However, I wanted to highlight that vRA components work with different SSL certificate file formats. Here is a list of the common formats used in a vRA solution:

PEM: short for Privacy Enhanced Mail
P7B: Public Key Cryptography Standard (PKCS) Format #7
PFX: Public Key Cryptography Standard (PKCS) Format #12
CSR: short for Certificate Signing Request (.CER or .CRT files can be in either PEM or DER format):

The certificate generation process

Given that certificate generation is a protracted process, we have detailed the high-level steps involved in creating the certificates. The extensive list of steps for creating the certificates will be covered later in this chapter:

Step 1:

Download the Certgen script from http://kb.vmware.com/kb/2107816 and upload...

Learning VMware vRealize Automation

By : SRIRAM RAJENDRAN, Sriram Rajendran

Learning VMware vRealize Automation

By: SRIRAM RAJENDRAN, Sriram Rajendran

Overview of this book

Related Content you might be interested in

Current Title:

Learning VMware vRealize Automation

Certificates

The certificate generation process