Deploying VMware vCloud Director 5.5

130
VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in Deploying VMware vCloud Director 5.5 Prerequisites / Tutorial To-Do List Microsoft SQL Server 2008 R2 The SQL Server must use Mixed Mode authentication (cannot use Windows Authentication, must be a SQL account) We’ll go over configuring this in the guide. Linux VM Must run one of the following OSes (I’m using CentOS6 for this guide) CentOS 6 (64-bit) Update 4 Red Hat Enterprise Linux 5 (64-bit) Update 4 Red Hat Enterprise Linux 5 (64-bit) Update 5 Red Hat Enterprise Linux 5 (64-bit) Update 6 Red Hat Enterprise Linux 5 (64-bit) Update 7 Red Hat Enterprise Linux 5 (64-bit) Update 8 Red Hat Enterprise Linux 5 (64-bit) Update 9 Red Hat Enterprise Linux 6 (64-bit) Update 1 Red Hat Enterprise Linux 6 (64-bit) Update 2 Red Hat Enterprise Linux 6 (64-bit) Update 3 Red Hat Enterprise Linux 6 (64-bit) Update 4 Two network adapters At least 4 GB of memory Hard drive space for the OS and an additional 2 GB of disk space for vmware installation and log files Working ESXi environment with vCenter Server VMware vCloud Networking and Security 5.5.x VMware vCloud Director License Key

Transcript of Deploying VMware vCloud Director 5.5

Page 1: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Deploying VMware vCloud Director 5.5

Prerequisites / Tutorial To-Do List

Microsoft SQL Server 2008 R2

The SQL Server must use Mixed Mode authentication (cannot use Windows

Authentication, must be a SQL account) We’ll go over configuring this in the guide.

Linux VM

Must run one of the following OSes (I’m using CentOS6 for this guide)

CentOS 6 (64-bit) Update 4

Red Hat Enterprise Linux 5 (64-bit) Update 4

Red Hat Enterprise Linux 5 (64-bit) Update 5

Red Hat Enterprise Linux 5 (64-bit) Update 6

Red Hat Enterprise Linux 5 (64-bit) Update 7

Red Hat Enterprise Linux 5 (64-bit) Update 8

Red Hat Enterprise Linux 5 (64-bit) Update 9

Red Hat Enterprise Linux 6 (64-bit) Update 1

Red Hat Enterprise Linux 6 (64-bit) Update 2

Red Hat Enterprise Linux 6 (64-bit) Update 3

Red Hat Enterprise Linux 6 (64-bit) Update 4

Two network adapters

At least 4 GB of memory

Hard drive space for the OS and an additional 2 GB of disk space for vmware installation

and log files

Working ESXi environment with vCenter Server

VMware vCloud Networking and Security 5.5.x

VMware vCloud Director License Key

Page 2: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Best practicies article can be found

here: http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&exter

nalId=2059451

Deploy VMware vCloud Networking and Security 5.5.x

VMware vCloud Networking and Security 5.5 (formerlly called vShield). Unlike other VMware

products, this product must be installed as an appliance. VMware provides you an OVA file that contains the entire virtual appliance, so minimal configuration is needed. Here is a good overview of

the product and how it works: http://vmwarelearning.com/vcloud_net_sec/

Before beginning, here are the following hardware prerequisites. These prerequisites can be found from the official VMware deployment guide: http://www.vmware.com/pdf/vshield_51_quickstart.pdf

Memory

vShield Manager: 8GB allocated, 3GB reserved vShield App: 1GB allocated, 1 GB reserved

vShield Edge compact: 256 MB, large: 1 GB, x-large: 8 GB vShield Data Security: 512 MB Disk Space

vShield Manager: 60 GB vShield App: 5 GB per vShield App per ESX host vShield Edge compact and large: 320 MB, lx-Large: 4.4 GB (with 4 GB swap file)

vShield Data Security: 6GB per ESX host vCPU vShield Manager: 2

vShield App: 2 vShield Edge compact: 1, large and x-Large: 2

vShield Data Security: 1

Page 3: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Installing VMware vCloud Networking and Security 5.5 Appliance

1. Download the VMware vCloud Networking and Security 5.5 OVA file from myvmware.com 2. Login to vCenter 3. Select File->Deploy OVF Template…

Page 4: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

4. Click Browse…

Page 5: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

5. Select the VMware-vShield-Manager-5.5.x-xxxxxxx.ova file you downloaded and click OK

Page 6: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

6. Select Next >

Page 7: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

7. Select Next >

Page 8: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

8. Select Accept and then click Next >

Page 9: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

9. Enter a name for the VM and click Next >

Page 10: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

10. Select a datastore to place the VM on storage and click Next >

Page 11: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

11. Select how you want to provision the VM and click Next >

Page 12: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

12. Select the destination network and click Next >

Page 13: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

13. Enter in a password for the default admin user and for privileged CLI access and clickNext>

Page 14: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

14. Click Finish

Page 15: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

15. Power on the VM

16. Open up a console the VM

Page 16: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

17. Login to the VM using the username admin and the “user password” you specified in step 13.

Page 17: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

18. Type enable and hit enter (use the “privileged user password” you specified in step 13).

19. Type setup and hit enter to launch the network configuration wizard

Enter in the static IP Address you wish to assign to the appliance and hit enter Enter in the Subnet Mask for your network and hit enter Enter in the Default gateway for your network and hit enter Enter in your Primary DNS server’s IP address and hit enter

Enter in your Secondary DNS server’s IP addres and hit enter Enter in your domain search list (DNS Suffix if you host your own internal DNS) and hit

Page 18: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

enter

Page 19: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

20. Type y to confirm your changes and hit enter

21. Press control+alt+insert to send the control+alt+delete command to the VM to restart the

guest.

Page 20: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Note: Logging out like the wizard tells you didn’t work for me. Had to do the reboot.

Page 21: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

22. Open up your webbrowser and head over to the static IP address you gave your appliance

Page 22: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

23. Enter in the username admin and the password default to login

Configuring VMware vCloud Networking and Security 5.5 for vCenter

Page 23: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. Click on the Edit button next to Lookup Service

2. Check Configure Lookup Service and enter in the information to your vCenter’s Lookup

Service instance: Lookup Service Host Lookup Service Port

SSO Administrator Username (should be admin@System-

Page 24: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

[email protected] if you used the default installation options) SSO Administrator Password. Click OK once configured.

Page 25: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

3. Click Yes to trust the server’s SSL certificate

Page 26: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

4. Click Edit next to vCenter Server

5. Enter in your vCenter info and click OK

vCenter Server Administrator Username

Page 27: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Administrator Password

Page 28: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

6. Select Yes to trust the vCenter SSL certificate

Page 29: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

7. Check Install this certificate and do not display any security warnings and then click the Ignore button when prompted

Page 30: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

8. Click the Edit button next to NTP Server

Page 31: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

9. Specify the IP address of the NTP server you wish to sync to and click OK

Page 32: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

10. Click the Change Password link at the top to change the default admin password. ClickOK when you are done.

At this point, you can begin to install the vShield App, vShield Endpoint, and vShield Data Security services by selecting one of your hosts and clicking the Install links. However, configuration of these options is outside the scope of this tutorial.

Page 33: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Note: One thing that I did notice that is different from vShield 5.1 is that once vShield Manager 5.5 is synchronized with vCenter, the management plugin will automatically be registered to vCenter and you can access vShield Manager from the vSphere Client.

Linux VM Installation (CentOS 6)

Page 34: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. Grab a copy of the live CD iso to install the OS

1. http://isoredirect.centos.org/centos/6/isos/x86_64/

2. Next your way to victory through the install, substituting in your location and server info.

3. Install VM tools once you have your OS up and running

A quick tutorial on how to get VMware Tools up and running on aCentOS 6 Linux machine. Although the instructions are shown with the GUI, we’ll use terminal so the guide works with both gui and non-gui based installs.

1. Mount the VM tools installer to your VM

Page 35: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

2. Open up Terminal

3. Execute the following command (this will create a mount point for our CD drive)

Page 36: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. mkdir /cdrom

4. Execute the following command (this will map the CD drive to our cdrom mount point)

Page 37: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. mount /dev/cdrom /cdrom

5. Execute the following command to move to your temporary files folder

Page 38: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. cd /tmp

6. Execute the following command to extract the VMware Tools tarball

Page 39: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. tar -xvf /cdrom/VMwareTools (tab to autofill the rest of the package)

7. Execute the following command to run the VMware Tools installer

Page 40: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. ./vmware-tools-distrib/vmware-install.pl

Page 41: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

8. Press Enter/Return through each of the questions, using their defaults

Page 42: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Page 43: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Page 44: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

9. Verify VMtools is running by looking at the client status in vSphere

4. Configure static IPs on each of your network cards

5. Enable the firewall to allow inbound connections on port 443 (HTTPS)

Page 45: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

6. Open up terminal if you are on the GUI version of CentOS 6

7. Execute the following command

Page 46: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. system-config-firewall-tui

Page 47: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

8. Use your arrow keys to select Customize and hit enter

9. Use your arrow keys to select which service you would like to allow. Hit the spacebar to

enable or disable the rule and then select Close once you have enabled/disabled the rules

you wish.

Page 48: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. In this case, I arrowed down to HTTPS and hit the spacebar.

Page 49: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

10. Select OK

Page 50: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

11. Select Yes

Generate SSL certificates

We will need to generate some SSL certificates before running the vCloud Director installation. Please

follow the steps below to create a java keystore that vCloud director will use for SSL. Below are two

different methods of generating certificates. Use the first if you don’t want to sign your certificates, use

the second if you want to sign your certificate with an internal or external certificate authority. Note:

Usually I create seperatekeystores with for each service, in this case, VMware wants both certificates in

the same keystore. Additionally, make sure you change the default password in the commands below to

something stronger (other VMware products want you to use a generic password, this one you can

change as it will be prompted during the install process).

Creating Self-Signed Certificates

Page 51: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

keytool -genkey -keyalg RSA -storetype JCEKS -alias http -keystorecertificates.ks -storepasspasswd -

validity 360 -keysize 2048

keytool -genkey -keyalg RSA -storetype JCEKS -alias consoleproxy -keystore certificates.ks -

storepass passwd -validity 360 -keysize 2048

–Verify both certificates are in the same keystore–

Page 52: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

keytool -list -keystorecertificates.ks -storetype JCEKS -storepass “passwd”

Creating Signed Certificate Requests (use this if you have an internal PKI, skip this step if you used self-

signed certs above)

–Create the certificate requests–

HTTP Web Cert Request

keytool –certreq -keystorecertificates.ks -storetype JCEKS -storepass passwd -alias http -

file http.csr -validity 360 -keysize 2048

Console Proxy Cert Request

keytool -keystorecertificates.ks -storetype JCEKS -storepass passwd -certreq –alias

consoleproxy -file consoleproxy.csr -validity 360 -keysize 2048

–Import CA Chain–

Root Certificate Authority

keytool -storetype JCEKS -storepass passwd -keystorecertificates.ks -import –alias root -

file root.cer

Intermediate Certificate Authority (only needed if you have one)

keytool -storetype JCEKS -storepass passwd -keystorecertificates.ks -import –alias

intermediate -file intermediate.cer

Page 53: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

–Import Signed Cert–

HTTP Web Signed Cert

keytool -storetype JCEKS -storepass passwd -keystorecertificates.ks -import –alias http -

file http.cer

Console Proxy Signed Cert

keytool -storetype JCEKS -storepass passwd -keystorecertificates.ks -import –alias

consoleproxy -file consoleproxy.cer

Note: Official VMware KB article on generating SSL certificates for vCloud

Director: http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&ex

ternalId=1026309

Configure the Microsoft SQL (MSSQL) Server Database

1. Login to your SQL Server/Cluster

Page 54: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

2. Right click on your SQL Server and select Properties

3. Select the Security page and ensure SQL Server and Windows Authentication mode is checked

Page 55: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. Per VMware’s documentation, Windows Authentication is not supported when using

Microsoft SQL with vCloud Director.

4. Click OK

5. Click on the New Query button and Execute the following query (make sure you change the

path to the database and log files). This command will create the database instance and log files,

specifying the proper collation sequence:

USE [master]

GO

CREATE DATABASE [vcloud] ON PRIMARY

Page 56: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

(NAME = N'vcloud', FILENAME = N'C:\vcloud.mdf', SIZE = 100MB, FILEGROWTH = 10% )

LOG ON

(NAME = N'vcdb_log', FILENAME = N'C:\vcloud.ldf', SIZE = 1MB, FILEGROWTH = 10%)

COLLATE Latin1_General_CS_AS

Page 57: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

GO

Page 58: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Page 59: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

6. Use VMware’s recommended transaction isolation level. Click the New Query button again and

then Execute the following query:

USE [vcloud]

GO

ALTER DATABASE [vcloud] SET SINGLE_USER WITH ROLLBACK IMMEDIATE;

ALTER DATABASE [vcloud] SET ALLOW_SNAPSHOT_ISOLATION ON;

ALTER DATABASE [vcloud] SET READ_COMMITTED_SNAPSHOT ON WITH NO_WAIT;

ALTER DATABASE [vcloud] SET MULTI_USER;

Page 60: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

GO

Page 61: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Page 62: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

7. Next, create the SQL User to connect to the database (we will use vcloud as the username, you

can change this if you would like). Click the New Query button again and thenExecute the

following query (amke sure to change the default password):

USE [vcloud]

GO

CREATE LOGIN [vcloud] WITH PASSWORD = 'vcloudpass', DEFAULT_DATABASE =[vcloud],

DEFAULT_LANGUAGE =[us_english], CHECK_POLICY=OFF

GO

CREATE USER [vcloud] for LOGIN [vcloud]

Page 63: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

GO

Page 64: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Page 65: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

8. Last, assign the proper permissions to the SQL user. We will need the user to have db_owner

permissions for the install. Click the New Query button again and thenExecute the following

query:

USE [vcloud]

GO

sp_addrolemember [db_owner], [vcloud]

Page 66: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

GO

Page 67: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Page 68: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

The official VMware KB article on configuring MSSQL Server (and oracle) can be found

here: http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&exter

nalId=2034540

Install vCloud Director

1. Copy the certificates.kskeystore over to the vCloud Director VM if you didn’t generate them on

it.

1. I placed my ssl certificates in the following directory (VMware doesn’t recommend a

location, so I just picked this one): /opt/vmware/

2. Download a copy of VMware vCloud Director 5.5.X from myvmware.com

Page 69: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

3. Open up Terminal

4. Execute the following command to install one of the prerequisites for the vcloud director

installer (CentOS should come preinstalled with the others)

Page 70: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. yum install redhat-lsb

Page 71: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

5. Enter y and then press enter to continue the install

Page 72: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

6. Enter y and then press enter to continue the install

7. Navigate to the folder where you downloaded the vmware-vcloud-director bin file and execute

the following command to allow the bin file to be executed

Page 73: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. chmodu+x vmware-vcloud-director-5.5 (tab to the end of the file)

8. Execute the following command to begin the installation

Page 74: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. ./vmware-vcloud-director (tab to the end of the file)

Page 75: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

9. Enter y to run the script after the installer verifies prerequisites

Page 76: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

10. Select which adapter you would like to assign the HTTP service to and press enter (this will be

for the web management interface)

Page 77: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

11. Select which adapter you would like to assign the console proxy IP address to and press enter

Page 78: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

12. Enter in the path to your certificates.ks file and press enter (in this tutorial, I used

/opt/vmware/certificates.ks for example)

Page 79: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

13. Enter in the password to the keystore when prompted and press enter

Page 80: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

14. If you have a syslog server enter in the IP to it, otherwise press enter to skip it

Page 81: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

15. Type 2 to use Microsoft SQL Server and press enter

Page 82: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

16. Enter in the hostname or IP address to your MSSQL server and press enter

Page 83: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

17. Press enter to use the default SQL server port

Page 84: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

18. Enter in the name of your sql database (using the default database name vcloud for this guide)

and press enter

Page 85: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

19. Press enter to use the default database instance

Page 86: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

20. Enter your database user (vcloud is what we have been using for this tutorial) and press enter

Page 87: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

21. Enter the password to your sql user and press enter

Page 88: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

22. Type y and press enter to start the service

Page 89: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Configuring vCloud Director

1. Open up your web browser and navigate over to your vCloud instance

2. Optionally, install the VMware Remote Console Plug-in if prompted and then click Next

Page 90: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. The VMware Remote Console plug-in is used to manage your VMs through the web. It is

not needed during the installation process.

Page 91: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

3. “Read” and check Yes, I accept the terms in the license agreement and click Next

Page 92: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

4. Enter your vCloud Director license key (can be obtained my myvmware.com) and clickNext

Page 93: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

5. Enter in an administrator account used to manage vCloud Director and then click Next

Page 94: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

6. Enter a system name (I used vCloudDirector) that gets added to vSphere. This is where all the

vCloud Director VMs will go when they are provisioned. Click Next

Page 95: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

7. Click Finish

8. Login using your Administrator account once redirected

Page 96: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

9. Click on Attach a vCenter undernetth provision your Cloud resources…

Page 97: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

10. Enter in your vCenter info and click Next

Page 98: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

11. Enter in the username and password to your vShield Manager instance and click Next

Page 99: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

12. Verify your settings and click Finish

Page 100: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

13. Click on Step 2, Create a Provider VDC

14. If you have different resource pools with different configurations, I would create a similar name

for your vDC. In this example, I only have one resource pool containing all the resources in my

Page 101: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

environment, so I am going to name my vDC (Virtual Data Center) My Company.

Click Next when ready to proceed.

1. Additionally, you can select what supported hardware version you wish to use. As I

have no ESX 4.x hosts, I am going to select Hardware version 9 as I have a newer

environment.

2. Note: Per VMware’s website, here is the definition of a Provider vDC: A Provider vDC is a

collection of compute, memory, and storage resources from one vCenter. A Provider

Page 102: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

vDC provides resources to organization vDCs.

Page 103: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

15. Select a resource pool you wish to deploy the VMs to and click Next

Page 104: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

16. If you have a specific datastore or storage policy you wish to use for this vDC, select the Storage

Policy/Datastore, click the Add button, and then click Next.

Page 105: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

17. Enter in the credentials to each of the hosts to deploy the vCloud Director agent. Once

completed, click Next.

Page 106: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

18. Click Finish if the provided information looks correct

19. Now, depending on your configuration, if you had other VMs deployed to this resource pool,

you may receive an error stating that the machines cannot enter maintennace mode. The

reason behind this is that DRS is preventing the hosts from entering maintnenace mode because

Page 107: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

DRS cannot move the VMs around to achieve High Availablity.

Page 108: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Page 109: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. If you see this behavior, you will have to manually deploy the vCloud Director agents to

the hosts. To do this, click on the Manage & Monitor tab inside of vCloud Director.

2. Select Hosts

Page 110: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

3. Right click on one of the hosts and select Prepare Host…

Page 111: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

4. Enter the username and password to the host and click OK

5. Repeat this process for the other hosts in your cluster (you can select multiple hosts at

a time. Now that we have at least one host available, we can failover a few VMs via)

Page 112: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Page 113: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

Page 114: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

20. Click on the Home tab and then click on the Create a new organization link

21. Enter in your organization information and click Next

Page 115: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. The Organization name is simply a code used to generate a short url to identify the

organization. Only letters and numbers are accepted in this field.

Page 116: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

22. Optionally select whether you want to use LDAP to provide access to vCloud Director and then

click Next.

Page 117: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

23. On the Add Local Users page, click Add to add virtual vCloud Users (non-ldap). Click Nextonce

you have added the users of your choice or click Next if you want to add users later.

Page 118: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

24. On the Catalog page, select whether or not you want to allow sharing/publishing between

organizations. In this case, just click Next.

(oops, no picture for this one )

25. On the Email Preferences page, click Next

Page 119: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

26. Configure the policies to your liking. In this case I am going to leave things with their default

settings and click Next

(Oops, no picture for this one )

27. Click Finish

Page 120: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

28. Click on Step 6 Allocate resources to an organization

Page 121: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

29. Select the Organization you created and click Next

Page 122: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

30. Select your Provider VDC and click Next

Page 123: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

31. Select the allocation model you choose to best fit your organization. In this case, I am going to

use Pay-As-You-Go to only allocate used resources. Click Next.

Page 124: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

32. Choose you you want to configure your allocation model from the previous step and clickNext.

Page 125: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

33. Select the storage you want to use, click Add, and then click Next

Page 126: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

34. Click Next on the Select Network Pool & Services page

35. Click Next if you don’t need an edge gateway to an external network

Page 127: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

1. An edge gateway is needed to provide access to other internal and external (internet)

networks.

Page 128: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

36. Enter a name for the new Organization VDC and click Next

Page 129: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

37. Click Finish

Page 130: Deploying VMware vCloud Director 5.5

VEPSUN Education Services, S R Arcade, 6th Cross, Tulasi Theater Road, Marathahalli, Bangalore. Email- [email protected] www.vepsun.in

At this point you should be able to publish a catalog or create a new VM from scratch in a completely

isolated environment. You can add an external network or utilize a VXLAN with additional

configurations to begin to connect your network to an outside world.