Documentos de Académico
Documentos de Profesional
Documentos de Cultura
Table of Contents
Lab Overview - HOL-SDC-1610 - Virtualization 101: vSphere with Operations
Management 6.................................................................................................................. 3
Lab Guidance .......................................................................................................... 4
What is Virtualization? ............................................................................................ 6
Module 1: Introduction to vSphere with Operations Management - (60 Minutes) ........... 17
VMware vSphere with Operations Management Overview.................................... 18
Understanding the User Interface - vSphere Web Client ....................................... 21
Understanding the User Interface - vRealize Operations Manager........................ 45
How to Install vSOM .............................................................................................. 64
Additional Information .......................................................................................... 66
Module 2: Build and Manage your Virtual Infrastructure - (90 Minutes) .......................... 67
Virtual Infrastructure - Cluster Management ......................................................... 68
Virtual Infrastructure - Create and Edit a Virtual Machine ..................................... 69
Virtual Infrastructure - Migrate a Virtual Machine ................................................. 88
Virtual Infrastructure - Working with Virtual Machine Snapshots .......................... 93
Virtual Infrastructure - Cloning Virtual Machines and Using Templates ............... 107
Virtual Infrastructure - Virtual Machine Monitoring and Remediation.................. 124
Virtual Infrastructure - Working with the Virtual Standard Switch ...................... 148
Abstraction of Storage for More Efficient Management and Better Control......... 165
Abstraction of Storage - Managing Your Storage................................................. 190
Getting Started with Update Manager ................................................................ 199
Build and Manage your Virtual Infrastructure - Scale Out ................................... 212
Additional Information......................................................................................... 214
Module 3: Manage Capacity Risk and Plan for the Future - (60 Minutes) ...................... 215
Manage Capacity and Risk .................................................................................. 216
Increase Operational Efficiency........................................................................... 237
Ensure Future Capacity Through Capacity Modeling ........................................... 253
Module 4: Optimize Workload Performance while Maintaining Business Priorities - (60
Minutes) ........................................................................................................................ 267
Module Preparation ............................................................................................. 268
Storage DRS........................................................................................................ 284
Storage Policy Based Management (SPBM)......................................................... 287
Right Size ............................................................................................................ 290
Demonstrate automatic load balancing for assuring proper resource allocation 310
Workload Placement (WLP) Rebalance ................................................................ 346
Module 5: Ensure Business Continuity and Availability - (60 Minutes) .......................... 357
Show automatic restart of virtual machines after a host failure ......................... 358
Demonstrate resilience to network component failures...................................... 398
vSphere Data Protection and vSphere Replication .............................................. 411
Module 6: Simplify Security and Compliance - (60 Minutes) ......................................... 412
Introduction to vSphere Hardening ..................................................................... 413
Ensure auditability of administrative actions ...................................................... 432
HOL-SDC-1610
Page 1
HOL-SDC-1610
HOL-SDC-1610
Page 2
HOL-SDC-1610
HOL-SDC-1610
Page 3
HOL-SDC-1610
Lab Guidance
This introductory lab demonstrates the core features and functions of vSphere with
Operations Management (VSOM) and vCenter 6.0. This lab is an ideal place to begin
your journey in Virtualization.
This lab will walk you through the core features of vSphere, vSphere with Operations
Management, and vCenter, including storage and networking. The lab is broken into 8
Modules which can be taken in any order.
HOL-SDC-1610
Page 4
HOL-SDC-1610
http://docs.hol.vmware.com/announcements/nee-default-language.pdf
Disclaimer
This session may contain product features that are currently under
development.
This session/overview of the new technology represents no commitment from
VMware to deliver these features in any generally available product.
Features are subject to change, and must not be included in contracts,
purchase orders, or sales agreements of any kind.
Technical feasibility and market demand will affect final delivery.
Pricing and packaging for any new technologies or features discussed or
presented have not been determined.
HOL-SDC-1610
Page 5
HOL-SDC-1610
What is Virtualization?
If you are not familiar with Virtualization, this lesson will give you an introduction to it.
Virtualization:
Today's x86 computer hardware was designed to run a single operating system and a
single application, leaving most machines vastly underutilized. Virtualization lets you
run multiple virtual machines on a single physical machine, with each virtual machine
sharing the resources of that one physical computer across multiple environments.
Different virtual machines can run different operating systems and multiple applications
on the same physical computer.
HOL-SDC-1610
Page 6
HOL-SDC-1610
Virtualization Defined
Virtualization is placing an additional layer of software called a hypervisor on top of your
physical server. The hypervisor enables you to install multiple operating systems and
applications on a single server.
HOL-SDC-1610
Page 7
HOL-SDC-1610
Separation
By isolating the operating system from the hardware, you can create a virtualizationbased x86 platform. VMware's hypervisor based virtualization products and solutions
provide you the fundamental technology for x86 virtualization.
HOL-SDC-1610
Page 8
HOL-SDC-1610
Partitioning
In this screen, you can see how partitioning helps improve utilization.
HOL-SDC-1610
Page 9
HOL-SDC-1610
Isolation
You can isolate a VM to find and fix bugs and faults without affecting other VMs and
operating systems. Once fixed, an entire VM Restore can be performed in minutes.
HOL-SDC-1610
Page 10
HOL-SDC-1610
Encapsulation
Encapsulation simplifies management by helping you copy, move and restore VMs by
treating entire VMs as files.
HOL-SDC-1610
Page 11
HOL-SDC-1610
Hardware Independence
VMs are not dependent on any physical hardware or vendor, making your IT more
flexible and scalable.
HOL-SDC-1610
Page 12
HOL-SDC-1610
Benefits
Virtualization enables you to consolidate servers and contain applications, resulting in
high availability and scalability of critical applications.
HOL-SDC-1610
Page 13
HOL-SDC-1610
Simplify Recovery
Virtualization eliminates the need for any hardware configuration, OS reinstallation and
configuration, or backup agents. A simple restore can recover an entire VM.
HOL-SDC-1610
Page 14
HOL-SDC-1610
HOL-SDC-1610
Page 15
HOL-SDC-1610
Cost Avoidance
HOL-SDC-1610
Page 16
HOL-SDC-1610
Module 1: Introduction to
vSphere with Operations
Management - (60
Minutes)
HOL-SDC-1610
Page 17
HOL-SDC-1610
HOL-SDC-1610
Page 18
HOL-SDC-1610
HOL-SDC-1610
Page 19
HOL-SDC-1610
Here is a short video that will explain some of the basic concepts of server virtualization.
Here is a short video that will show you the benefits to using VSOM in your environment.
HOL-SDC-1610
Page 20
HOL-SDC-1610
HOL-SDC-1610
Page 21
HOL-SDC-1610
HOL-SDC-1610
Page 22
HOL-SDC-1610
The layout of these panes can be customized. Click the push pin icon in the Navigator,
Recent Tasks, Work in Progress, or Alarms panes to minimize them. This can create more
room for the main area if you are working on a small monitor or one with low resolution.
You can also change where each of those panes are shown by dragging the title bar of
the pane to one of the edges of the screen.
Please Note: In this lab, since our screen size is limited, we have set all the panes to be
minimized by default to give you the most screen real estate possible. You can open
any of the panes at your convenience and click on the push pin in any pane to allow it to
stay on the screen.
HOL-SDC-1610
Page 23
HOL-SDC-1610
HOL-SDC-1610
Page 24
HOL-SDC-1610
Please Note: There are "Getting Started" pages to help familiarize users with navigating
the vSphere Web Client. Once you are familiar with the Web Client, you can hide these
pages. Simply click on the "Help" dropdown and select the option to "Hide All Getting
Started Pages".
HOL-SDC-1610
Page 25
HOL-SDC-1610
HOL-SDC-1610
Page 26
HOL-SDC-1610
Search Options
We have different search options, "New Search", "Saved Searches" and "Quick Search".
Let's first take a look at "New Search"
HOL-SDC-1610
Page 27
HOL-SDC-1610
1. From anywhere in the web client, click the "Home" icon to show the Home Menu.
2. Click "New Search"
HOL-SDC-1610
Page 28
HOL-SDC-1610
HOL-SDC-1610
Page 29
HOL-SDC-1610
HOL-SDC-1610
Page 30
HOL-SDC-1610
Advanced Search
Using advanced search allows you to search for managed objects that meet multiple
criteria.
For example, you can search for virtual machines matching a search string. The virtual
machines reside on hosts whose names match a second search string. Let's do a search
for virtual machines to check VMware Tools status.
1.
2.
3.
4.
5.
6.
HOL-SDC-1610
Page 31
HOL-SDC-1610
HOL-SDC-1610
Page 32
HOL-SDC-1610
Quick Search
1. In the upper right hand corner, enter "vm" in the Quick Search field. A pop-up
window is displayed that shows filtered items which match.
2. Click "VM Network" next to the "Distributed Port Group" heading.
HOL-SDC-1610
Page 33
HOL-SDC-1610
HOL-SDC-1610
Page 34
HOL-SDC-1610
HOL-SDC-1610
Page 35
HOL-SDC-1610
HOL-SDC-1610
Page 36
HOL-SDC-1610
HOL-SDC-1610
Page 37
HOL-SDC-1610
HOL-SDC-1610
Page 38
HOL-SDC-1610
HOL-SDC-1610
Page 39
HOL-SDC-1610
HOL-SDC-1610
Page 40
HOL-SDC-1610
HOL-SDC-1610
Page 41
HOL-SDC-1610
HOL-SDC-1610
Page 42
HOL-SDC-1610
HOL-SDC-1610
Page 43
HOL-SDC-1610
Search Results
1. Click on the "Related Objects" tab to find the list of objects which have been
assigned the "Web Server Version 2" tag
HOL-SDC-1610
Page 44
HOL-SDC-1610
HOL-SDC-1610
Page 45
HOL-SDC-1610
HOL-SDC-1610
Page 46
HOL-SDC-1610
Navigation Panel
When you log in, you will be at the Home Page. On the left of the screen we can always
see the Navigation Panel. This panel can be used to quickly navigate whatever
information is currently on screen, and will allow you to focus down to different levels
very quickly.
HOL-SDC-1610
Page 47
HOL-SDC-1610
Content Panel
On the right hand side of the screen we can see the Content Panel, which will show
whatever contextual information is currently selected in the Navigation Panel. This
panel will automatically change to show you the most up to date and relevant
information.
HOL-SDC-1610
Page 48
HOL-SDC-1610
Quick Links
By default, the Navigation Panel will show us key links to access the various content
pages, which can also be found in a handy Quick Link format at the top. These five
links take us to the various control panels in vRealize Operations Manager 6.0.
Also of note, the Back Button will return you to previous working pages, in an intelligent
way. This can be very time saving when you are navigating through the interface
troubleshooting a performance problem in your environment!
HOL-SDC-1610
Page 49
HOL-SDC-1610
Home Page
The Home Page is the landing page for vRealize Operations Manager 6.0. This is the
primary view where an administrator can browse and view the available Dashboards.
Any 3rd party or add-on Solution which create a Dashboard will make it visible here, so
this screen is a great way to get quick overviews of your environment.
Dashboards can be quickly accessed using the appropriate tab if visible, or selected
directly using the handy Dashboard List dropdown selector.
HOL-SDC-1610
Page 50
HOL-SDC-1610
Alerts Page
The Alerts Page shows a chronologically sorted list of recent Alerts in your environment
that need attention. Alerts are categorized based on their criticality, status, and impact
on health, risk, or efficiency.
You can quickly filter Alerts by Badge type by selecting the appropriate Badge Category
from the Navigation Pane, or by typing in a search term in the Quick Filter box.
Environments Page
The Environment Page helps us view our environment through a series of metrics and
object relationships by using Inventory Trees.
There are different types of Inventory Trees, which can be added by Adapters.
Inventory Trees can have different types (ie. Storage, Hosts & Clusters, Networking, etc),
and also Instances (ie. Each vCenter would create an instance of Hosts & Clusters).
Each Inventory Tree shows us a series of Objects and Relationships between those
Objects. Individual Objects can be part of many different Inventory Trees.
InventoryTrees will quickly help you navigate your environment and visualize
relationships between parent and child relationships.
The Environment Page is divided up into a series of sub tabs:
Summary: Shows concerns about the currently selected object and its child
objects.
Alerts: Shows all Alerts which have been raised for the currently selected object
only.
HOL-SDC-1610
Page 51
HOL-SDC-1610
Analysis: Shows us Badge scores for the current object (Workload, Anomalies,
Faults, etc)
Troubleshooting: Shows detailed metrics for this object, including the extremely
powerful All Metrics tab.
Details: Shows Views and Heatmaps for the currently selected object.
Environment: Shows a visualization view which can be used to quickly assess
problem relationships.
Projects: Capacity Planning view.
Reports: Reporting tools.
Each sub-tab can be used to quickly access the information you are interested in, to
help troubleshoot the issue at hand faster and more accurately.
HOL-SDC-1610
Page 52
HOL-SDC-1610
Content Page
This page is an extremely powerful tool which administrators can leverage to build
content for vRealize Operations Manager 6.0, including Dashboards and Alerts.
We will cover the creation of these tools in detail in upcoming modules.
HOL-SDC-1610
Page 53
HOL-SDC-1610
Reports
From the Environment Page, we can access the reports in vRealize Operations Manager.
Reports are a scheduled snapshot of views. You can create a report to represent
objects and metrics.
With vRealize Operations Manager reporting functions, you can generate a report to
capture details related to current or predicted resource needs. You can download the
report in PDF or CSV file format for future and offline needs. Reports can also be
scheduled to run at a user defined interval and emailed to recipients.
1. Click on the "Environment" Quick Link
2. Scroll down in the Navigation Panel and select "vSphere Hosts and Clusters"
HOL-SDC-1610
Page 54
HOL-SDC-1610
All templates that are applicable for the selected object are listed on the Report
Templates tab. You can order them by report name, subject, date they were modified,
last run, or owner.
Click on the "Reports" tab
1. Click on the Small Triangle next to "vSphere World" to expand the vSphere Hosts
and Clusters view. Notice the reports available in the Content Panel.
2. Expand the tree to view Cluster Site A
HOL-SDC-1610
Page 55
HOL-SDC-1610
When you run the report, you will notice the Generated Reports field change from "0" to
"1" indicating the report is running.
HOL-SDC-1610
Page 56
HOL-SDC-1610
HOL-SDC-1610
Page 57
HOL-SDC-1610
HOL-SDC-1610
Page 58
HOL-SDC-1610
Please Note: You can also export a report in CSV format, which depending on the report
content may be a more useful format.
Administration Page
The Administration Page contains all administration options including Solutions
(Adapters), User Management and Support tools.
Solutions - vRealize Operations Manager includes a page where you can add and
manage solutions, which include the adapters that connect you to the data to
monitor and manage. Solutions are delivered as management packs that include
content and adapters. Adapters are how vRealize Operations Manager manages
communication and integration with other products, applications, and functions
Policies - The Active Policies tab displays the policies associated with groups of
objects. You can manage the active policies for the objects in your environment
so that you can have vRealize Operations Manager analyze and display specific
data about those objects in dashboards, views, and reports.
Inventory Explorer - vRealize Operations Manager discovers objects in your
environment for each adapter instance and lists them. From the complete list of
all the objects in your environment, you can quickly access and configure any
object. For example, you can check if a datastore is connected or providing data,
or you can power on a virtual machine.
Access Control - Each user must have a unique account with one or more roles
assigned to enforce role-based security when they use vRealize Operations
Manager. You create a user account, and assign the account to be a member of
one or more user groups to allow the user to inherit the roles associated with the
user group and to access the objects associated with the user group. You assign
individual role types to the user to set their privileges, and select the objects in
your environment that the user can access.
Object Relationships - Objects in an enterprise environment are related to
other objects in that environment. Objects are either part of a larger object, or
they contain smaller component objects, or both. When you select a parent
HOL-SDC-1610
Page 59
HOL-SDC-1610
object, vRealize Operations Manager shows any related child objects. You can
delete a child object or add more child objects from the list of objects in your
environment.
HOL-SDC-1610
Page 60
HOL-SDC-1610
Dashboards
vRealize Operations Dashboards present a visual overview of the performance and state
of objects in your virtual infrastructure. You use dashboards to determine the nature
and timeframe of existing and potential issues with your environment.
When you first log in to vRealize Operations Manager, you will land on the Home page.
From here, you can go to the Content pane and view the dashboards that provide a
unified view of operations across the entire infrastructure.
To access the available dashboards
1. Navigate to the "Home" page
2. Click on the dashboards listed in the content pane
3. Click on the navigation arrows at the corners of the content pane to access the
additional dashboards
HOL-SDC-1610
Page 61
HOL-SDC-1610
This Management Pack can connect to any storage device that has a VASA provider, and
SAN/NAS Switches from Brocade or Cisco using SMI-S. Performance Data is collected
from host HBA's, NIC, VMs, and SAN/NAS Switches.
To enable the dashboards for MPSD
1.
2.
3.
4.
HOL-SDC-1610
Page 62
HOL-SDC-1610
HOL-SDC-1610
Page 63
HOL-SDC-1610
The following video will walk through the process of installing and configuring vSphere.
HOL-SDC-1610
Page 64
HOL-SDC-1610
This video will walk you through the Direct Console User Interface (DCUI)
This video walks you through the express installation of vRealize Operations Manager
(vROPs)
HOL-SDC-1610
Page 65
HOL-SDC-1610
Additional Information
We hope you have enjoyed taking this module and have a better understanding of the
basics of using vSphere with Operations Management. Be sure to take the survey at the
end.
For more information on vRealize Operations Management, here is a list of additional
online resources you can use:
vRealize Operations Manager Video Repository https://www.vmware.com/support/
vrealize-operations-Manager-6-video.html
VMware Feature Walkthrough vSphere with Operations Management Page
http://featurewalkthrough.vmware.com/#!/vsphere-with-operationsmanagement-6
If you have time remaining, here is a list of all the Modules that are part of this lab,
along with an estimated time to complete each one. Click on the 'Table of Contents'
button to quickly jump to that Module in the manual.
The complete listing of all eight modules are:
Module 1 - Introduction to vSOM (60 Minutes)
Module 2 - Build and Manage your Virtual Infrastructure (90 Minutes)
Module 3 - Manage Capacity Risk and Plan for the Future - (60 Minutes)
Module 4 - Optimize Workload Performance While Maintaining Business Priorities (60
Minutes)
Module 5 - Ensure Business Continuity and Availability (60 Minutes)
Module 6 - Simplified Security and Compliance (60 Minutes)
Module 7 - Log Management with vRealize Log Insight - (60 Minutes)
Module 8 - Power CLI (60 Minutes)
HOL-SDC-1610
Page 66
HOL-SDC-1610
HOL-SDC-1610
Page 67
HOL-SDC-1610
The following video will show the basics to getting started creating your VMware
vCenter Server Inventory using the vSphere Web Client.
HOL-SDC-1610
Page 68
HOL-SDC-1610
HOL-SDC-1610
Page 69
HOL-SDC-1610
HOL-SDC-1610
Page 70
HOL-SDC-1610
HOL-SDC-1610
Page 71
HOL-SDC-1610
HOL-SDC-1610
Page 72
HOL-SDC-1610
HOL-SDC-1610
Page 73
HOL-SDC-1610
HOL-SDC-1610
Page 74
HOL-SDC-1610
HOL-SDC-1610
Page 75
HOL-SDC-1610
HOL-SDC-1610
Page 76
HOL-SDC-1610
HOL-SDC-1610
Page 77
HOL-SDC-1610
HOL-SDC-1610
Page 78
HOL-SDC-1610
Power On linux-Web-01a
Once the virtual machine has been created, we can now power it on.
1.
2.
3.
4.
5.
HOL-SDC-1610
Page 79
HOL-SDC-1610
HOL-SDC-1610
Page 80
HOL-SDC-1610
Delete linux-Web-01a
Let's delete linux-Web-01a now.
1. Right-Click on "linux-Web-01a"
2. Click on "Delete from Disk" and select "Yes" when prompted from the pop-up box.
HOL-SDC-1610
Page 81
HOL-SDC-1610
We have just completed creating our virtual machine, but at this point, there is no
operating system installed. The Hands-on Lab Environment does not have sufficient
resources to allow us to complete the process of installing the guest OS and VMware
tools. The following video will show the remainder of the process.
HOL-SDC-1610
Page 82
HOL-SDC-1610
HOL-SDC-1610
Page 83
HOL-SDC-1610
HOL-SDC-1610
Page 84
HOL-SDC-1610
3. Click "OK" to add the device to the VM. When you select "OK" a new task to
create the network adapter is started.
HOL-SDC-1610
Page 85
HOL-SDC-1610
Clean-Up linux-Base-01a
Let's power off our virtual machine now.
1. Right-Click on "linux-Base-01a"
2. Click on "Power"
3. Click on "Power Off" and select "Yes" in the pop-up box.
HOL-SDC-1610
Page 86
HOL-SDC-1610
HOL-SDC-1610
Page 87
HOL-SDC-1610
HOL-SDC-1610
Page 88
HOL-SDC-1610
HOL-SDC-1610
Page 89
HOL-SDC-1610
HOL-SDC-1610
Page 90
HOL-SDC-1610
Select Network
Select the destination network from the dropdown box to provide network connectivity
for the virtual machine.
1. Select "VM Network" from dropdown menu
2. Click "Next"
HOL-SDC-1610
Page 91
HOL-SDC-1610
HOL-SDC-1610
Page 92
HOL-SDC-1610
HOL-SDC-1610
Page 93
HOL-SDC-1610
HOL-SDC-1610
Page 94
HOL-SDC-1610
HOL-SDC-1610
Page 95
HOL-SDC-1610
HOL-SDC-1610
Page 96
HOL-SDC-1610
HOL-SDC-1610
Page 97
HOL-SDC-1610
HOL-SDC-1610
Page 98
HOL-SDC-1610
HOL-SDC-1610
Page 99
HOL-SDC-1610
HOL-SDC-1610
Page 100
HOL-SDC-1610
HOL-SDC-1610
Page 101
HOL-SDC-1610
In the Manage VM Snapshots Wizard, select "Snapshot 1" from the Snapshot tree
Click "Revert to" and Click "Yes" to confirm action.
Click "Yes" to Confirm Revert to Snapshot
Click "Close"
HOL-SDC-1610
Page 102
HOL-SDC-1610
HOL-SDC-1610
Page 103
HOL-SDC-1610
HOL-SDC-1610
Page 104
HOL-SDC-1610
Delete Snapshots
1.
2.
3.
4.
It is a best practice to delete virtual machine snapshots when they are no longer
needed. Over time the snapshot delta can grow to be quite large which could result in
issues consolidating the virtual machine files.
HOL-SDC-1610
Page 105
HOL-SDC-1610
For our lab, the snapshot was used to revert our virtual machine to a previous hardware
state. A typical use case can be to take a snapshot of a virtual machine before the
installation of a software package. If something goes wrong, you can revert to a
previous state and retry the installation. The following video will provide additional
insight into the value of virtual machine snapshots.
HOL-SDC-1610
Page 106
HOL-SDC-1610
HOL-SDC-1610
Page 107
HOL-SDC-1610
HOL-SDC-1610
Page 108
HOL-SDC-1610
HOL-SDC-1610
Page 109
HOL-SDC-1610
HOL-SDC-1610
Page 110
HOL-SDC-1610
Select Storage
The datastore with the most free space is automatically chosen.
1. Keep the default"ds-site-a-nfs01"
2. Press the "Next" button.
HOL-SDC-1610
Page 111
HOL-SDC-1610
HOL-SDC-1610
Page 112
HOL-SDC-1610
HOL-SDC-1610
Page 113
HOL-SDC-1610
HOL-SDC-1610
Page 114
HOL-SDC-1610
HOL-SDC-1610
Page 115
HOL-SDC-1610
HOL-SDC-1610
Page 116
HOL-SDC-1610
Select Storage
1. Leave the default datastore "ds-site-a-nfs01"
2. Click "Next"
HOL-SDC-1610
Page 117
HOL-SDC-1610
HOL-SDC-1610
Page 118
HOL-SDC-1610
Ready to Complete
Review the deployment options for your new VM and click "Finish"
HOL-SDC-1610
Page 119
HOL-SDC-1610
HOL-SDC-1610
Page 120
HOL-SDC-1610
HOL-SDC-1610
Page 121
HOL-SDC-1610
Delete TinyLInux-VM
Let's delete this Virtual machine from our environment now.
1. Click on "TinyLinux-VM
2. Click on "Delete from Disk" and select "Yes" when prompted from the pop-up box.
HOL-SDC-1610
Page 122
HOL-SDC-1610
For additional features of cloning and templates for vSphere, please watch the following
video.
HOL-SDC-1610
Page 123
HOL-SDC-1610
HOL-SDC-1610
Page 124
HOL-SDC-1610
HOL-SDC-1610
Page 125
HOL-SDC-1610
PuTTY to linux-App-01a VM
1. Select linux-App-01a.
2. Click Load.
3. Click Open.
HOL-SDC-1610
Page 126
HOL-SDC-1610
HOL-SDC-1610
Page 127
HOL-SDC-1610
HOL-SDC-1610
Page 128
HOL-SDC-1610
HOL-SDC-1610
Page 129
HOL-SDC-1610
HOL-SDC-1610
Page 130
HOL-SDC-1610
HOL-SDC-1610
Page 131
HOL-SDC-1610
HOL-SDC-1610
Page 132
HOL-SDC-1610
HOL-SDC-1610
Page 133
HOL-SDC-1610
2. Here we can see the metrics that would have triggered the alert, this can help us
see the possible causes. In this case, you can see the Virtual Machine Workload
is at 100%.
3. Here we can see Recommendations that can help us resolve the problem with the
Virtual Machine.
4. Click on the icon next to "Other Recommendations" to view additional
recommendations to resolve our issue.
HOL-SDC-1610
Page 134
HOL-SDC-1610
HOL-SDC-1610
Page 135
HOL-SDC-1610
HOL-SDC-1610
Page 136
HOL-SDC-1610
HOL-SDC-1610
Page 137
HOL-SDC-1610
HOL-SDC-1610
Page 138
HOL-SDC-1610
Clean-Up linux-App-01a
Now that we are done with this portion of the lab, let's stop the CPU load on linuxApp-01a
1. Bring the Putty session for linux-App-01a back up and press "Enter" to stop the
CPULoad.sh script.
2. Close Putty session for linux-App-01a.
HOL-SDC-1610
Page 139
HOL-SDC-1610
HOL-SDC-1610
Page 140
HOL-SDC-1610
4.
5.
6.
7.
Please Note: We have done some of the tasks for you in this lab. We have already
created a policy that will trigger on the CPU workload alert. When we finish this group
configuration, the group members high CPU workload alert will cause the policy to start
the automated remediation action.
HOL-SDC-1610
Page 141
HOL-SDC-1610
HOL-SDC-1610
Page 142
HOL-SDC-1610
HOL-SDC-1610
Page 143
HOL-SDC-1610
HOL-SDC-1610
Page 144
HOL-SDC-1610
Please Note: If you receive a task status of "Failed" this is due to the fact that the fully
automated remediation action is asking for more resources than are allocated in the
HOL Lab environment. Since our ESXi hosts only have two physical CPU's, and the
automated remediation action is asking for more than 2 CPU's, the action fails. This is
an artifact of the lab environment, and not the functionality of the automated
remediation action.
HOL-SDC-1610
Page 145
HOL-SDC-1610
HOL-SDC-1610
Page 146
HOL-SDC-1610
Clean-Up linux-App-02a
Now that we are done with this portion of the lab, let's stop the CPU load on linuxApp-02a
1. Bring the Putty session for linux-App-02a back up and press "Enter" to stop the
CPULoad.sh script.
2. Close Putty session for linux-App-02a.
HOL-SDC-1610
Page 147
HOL-SDC-1610
HOL-SDC-1610
Page 148
HOL-SDC-1610
Add Networking
We will now add the Virtual Standard Switch to host esx-02a.corp.local.
1. Under vcsa-01.corp.local, expand "Datacenter Site A" and then "Cluster Site A".
2. Right-click on host esx-02a.corp.local in the Navigator and select "Add
Networking"
Connection Type
Select a connection type to create.
HOL-SDC-1610
Page 149
HOL-SDC-1610
Target Device
You will now select the target device for the new connection.
1. Select "New Standard Switch".
2. Click "Next".
HOL-SDC-1610
Page 150
HOL-SDC-1610
HOL-SDC-1610
Page 151
HOL-SDC-1610
Click "Next".
Connection Settings
You can now label your Standard Switch with an easily identifiable name. For our
example, change the name to VM Network 2.
Do not change the VLAN ID: leave this set to None (0).
Click "Next".
HOL-SDC-1610
Page 152
HOL-SDC-1610
HOL-SDC-1610
Page 153
HOL-SDC-1610
HOL-SDC-1610
Page 154
HOL-SDC-1610
HOL-SDC-1610
Page 155
HOL-SDC-1610
HOL-SDC-1610
Page 156
HOL-SDC-1610
View Adapters
The selected adapter appears as an Active Adapter under the Assigned Adapters List.
HOL-SDC-1610
Page 157
HOL-SDC-1610
HOL-SDC-1610
Page 158
HOL-SDC-1610
HOL-SDC-1610
Page 159
HOL-SDC-1610
HOL-SDC-1610
Page 160
HOL-SDC-1610
Forged Transmits
Reject Any outbound frame with a source MAC address that is different from the
one currently set on the adapter are dropped.
Accept No filtering is performed and all outbound frames are passed.
No changes are needed here and you mayproceed to the next step.
Traffic Shaping
Click Traffic shaping in the left pane. by ticking the override box, you can override the
default policy set at the switch level to apply to just this port group. A traffic shaping
policy is defined by average bandwidth, peak bandwidth, and burst size. You can
establish a traffic shaping policy for each port group. ESXi shapes outbound network
traffic on standard switches. Traffic shaping restricts the network bandwidth available on
a port, but can also be configured to allow bursts of traffic to flow through at higher
speeds.
Average Bandwidth
Establishes the number of bits per second to allow across a port, averaged over
time. This number is the allowed average load.
Peak Bandwidth
Maximum number of bits per second to allow across a port when it is sending or
receiving a burst of traffic. This number limits the bandwidth that a port uses
when it is using its burst bonus.
Burst Size
Maximum number of bytes to allow in a burst. If this parameter is set, a port
might gain a burst bonus if it does not use all its allocated bandwidth. When the
HOL-SDC-1610
Page 161
HOL-SDC-1610
port needs more bandwidth than specified by the average bandwidth, it might be
allowed to temporarily transmit data at a higher speed if a burst bonus is
available. This parameter limits the number of bytes that have accumulated in
the burst bonus and transfers traffic at a higher speed.
No changes are needed here and you may proceed to the next step.
HOL-SDC-1610
Page 162
HOL-SDC-1610
Use explicit failover order - From the list of active adapters, always use the
highest order uplink that passes failover detection criteria. No actual load
balancing is performed with this option
Network Failure Detection - The method the virtual switch will use for failover detection.
Link Status only - Relies only on the link status that the network adapter provides.
This option detects failures such as removed cables and physical switch power
failures.
Beacon Probing - Sends out and listens for beacon probes on all NICs in the team,
and uses this information, in addition to link status, to determine link failure.
ESXi sends beacon packets every second. The NICs must be in an active/active
or active/standby configuration because the NICs in an unused state do not
participate in beacon probing.
Notify Switches - specifies whether the virtual switch notifies the physical switch in case
of a failover.
Failover - specifies whether a physical adapter is returned to active status after
recovering from a failure.
If failback is set to Yes, the default selection, the adapter is returned to active
duty immediately upon recovery, displacing the standby adapter that took over
its slot, if any.
If failback is set to No for a standard port, a failed adapter is left inactive after
recovery until another currently active adapter fails and must be replaced. You
can also override the default virtual switch setting for the Failover order of the
physical adapters.
No changes are needed here and you may proceed to the next step.
HOL-SDC-1610
Page 163
HOL-SDC-1610
HOL-SDC-1610
Page 164
HOL-SDC-1610
HOL-SDC-1610
Page 165
HOL-SDC-1610
Local Storage
The illustration below depicts virtual machines using Local VMFS storage directly
attached to a single ESXi host.
Local storage can be internal hard disks located inside your ESXi host, or it can be
external storage systems located outside and connected to the host directly through
protocols such as SAS or SATA.
HOL-SDC-1610
Page 166
HOL-SDC-1610
Networked Storage
The illustration below depicts virtual machines using networked VMFS storage presented
to multiple ESXi hosts.
Networked storage consists of external storage systems that your ESXi host uses to
store virtual machine files remotely. Typically, the host accesses these systems over a
high-speed storage network. Networked storage devices are typically shared. Datastores
on networked storage devices can be accessed by multiple hosts concurrently, and as a
result, enable additional vSphere technologies such as High Availability host clustering,
Distributed Resource Scheduling, vMotion and Virtual Machines configured with Fault
Tolerance. ESXi supports several networked storage technologies - Fiber Channel, iSCSI,
NFS, and Shared SAS.
HOL-SDC-1610
Page 167
HOL-SDC-1610
HOL-SDC-1610
Page 168
HOL-SDC-1610
HOL-SDC-1610
Page 169
HOL-SDC-1610
Storage Details
You will now see the datastores that are provisioned in your environment.
1. Select the "ds-site-a-nfs01" datastore
2. Click on the "Summary" tab for additional information about the datastore
HOL-SDC-1610
Page 170
HOL-SDC-1610
HOL-SDC-1610
Page 171
HOL-SDC-1610
HOL-SDC-1610
Page 172
HOL-SDC-1610
HOL-SDC-1610
Page 173
HOL-SDC-1610
HOL-SDC-1610
Page 174
HOL-SDC-1610
HOL-SDC-1610
Page 175
HOL-SDC-1610
Storage vMotion
Planned downtime typically accounts for over 80% of datacenter downtime. Hardware
maintenance, server migration, and firmware updates all require downtime for physical
servers. To minimize the impact of this downtime, organizations are forced to delay
maintenance until inconvenient and difficult-to-schedule downtime windows.
The vMotion. and Storage vMotion functionality in vSphere makes it possible for
organizations to reduce planned downtime because workloads in a VMware environment
can be dynamically moved to different physical servers or to different underlying
storage without service interruption. Administrators can perform faster and completely
HOL-SDC-1610
Page 176
HOL-SDC-1610
Storage View
If you are not already logged into the vSphere Web Client:
Click the "Mozilla Firefox" icon from the Control Center desktop
Click the "Use Windows session authentication" check box
Click "Login"
1. Go the home screen of the vSphere Web Client by clicking the "Home" icon.
2. Click the "Storage" icon.
HOL-SDC-1610
Page 177
HOL-SDC-1610
3. Click the "Virtual Machines" tab. You should now have a list of all virtual machines
on the selected datastore.
Please Note: Depending on which lessons you have completed, the available datastores
and virtual machines may be different than the images shown above.
HOL-SDC-1610
Page 178
HOL-SDC-1610
Migrate Datastore
1. Select the radio button to "Change storage only".
2. Click "Next"
Note that in vSphere 6.0 we do have the ability to change compute, network, and
storage in the same vMotion operation.
HOL-SDC-1610
Page 179
HOL-SDC-1610
Select Storage
1. Note that the ds-site-a-nfs02 datastore is already selected because that's
where we dropped the VM prior to starting the wizard.
2. Click "Next" to accept the settings for the storage move.
Click "Finish" on the next screen to start the move.
This operation will take a few minutes. Feel free to monitor the operation within the
Recent Tasks pane or move on to the next step.
HOL-SDC-1610
Page 180
HOL-SDC-1610
Datastore Cluster
A vSphere Datastore Cluster balances I/O and storage capacity across a group of
vSphere datastores. Depending on the level of automation desired, Storage Dynamic
Resource Scheduler will place and migrate virtual machines in order to balance out
datastore utilization across the Datastore Cluster.
HOL-SDC-1610
Page 181
HOL-SDC-1610
HOL-SDC-1610
Page 182
HOL-SDC-1610
HOL-SDC-1610
Page 183
HOL-SDC-1610
HOL-SDC-1610
Page 184
HOL-SDC-1610
HOL-SDC-1610
Page 185
HOL-SDC-1610
HOL-SDC-1610
Page 186
HOL-SDC-1610
HOL-SDC-1610
Page 187
HOL-SDC-1610
centric. With VVOL's, we can manage our storage based on the requirements of the
application.
Virtual Volumes simplifies operations through policy-driven automation that enables
more agile storage consumption for VMs and dynamic adjustments in real time. It
simplifies the delivery of storage service levels to individual applications by providing
finer control of hardware resources and native array-based data services that can be
instantiated with per VM granularity.
HOL-SDC-1610
Page 188
HOL-SDC-1610
HOL-SDC-1610
Page 189
HOL-SDC-1610
HOL-SDC-1610
Page 190
HOL-SDC-1610
HOL-SDC-1610
Page 191
HOL-SDC-1610
Navigate to Home
Make sure you are on the Home screen. If not, click the Home icon.
HOL-SDC-1610
Page 192
HOL-SDC-1610
HOL-SDC-1610
Page 193
HOL-SDC-1610
3. Here we see the recommendations that can help us resolve the problem with the
Virtual Machine. In this case, we are prompted to add a new virtual hard disk, or
expand the existing disk of the virtual machine.
Please Note: To expand or add an additional virtual hard disk, we would follow the same
steps employed in the lab section "Virtual Infrastructure - Create and Edit a Virtual
Machine"
HOL-SDC-1610
Page 194
HOL-SDC-1610
HOL-SDC-1610
Page 195
HOL-SDC-1610
HOL-SDC-1610
Page 196
HOL-SDC-1610
Cisco using SMI-S. Performance Data is collected from Host HBAs, NIC, VMs, and SAN/
NAS switches.
MPSD 6.0.1 provides visibility into your storage environment. Using Common Protocols
you can collect performance and health data from the storage devices. Pre-defined
dashboards allow you to follow the path from a VM to the storage volume and identify
any problem that may exist along that path.
End to End view of the data path through the SAN and NAS; from VM to Storage
Volume
Support for both NFS/iSCSI and FC/FCoE protocols
Access to Storage devices leveraging standardized protocols; CIM, SMI-S, & VASA
Ready to use dashboards for Health and Performance
Analytics for common APD and PDL storage conditions
HOL-SDC-1610
Page 197
HOL-SDC-1610
HOL-SDC-1610
Page 198
HOL-SDC-1610
HOL-SDC-1610
Page 199
HOL-SDC-1610
HOL-SDC-1610
Page 200
HOL-SDC-1610
HOL-SDC-1610
Page 201
HOL-SDC-1610
HOL-SDC-1610
Page 202
HOL-SDC-1610
2. Under "Host Baselines", click on the Green Plus sign to create a new Baseline.
HOL-SDC-1610
Page 203
HOL-SDC-1610
New Baseline
1. Type the name "HOL Host Baseline", and a description of the baseline.
2. Under Baseline type, select "Host Patch"
3. Click "Next"
HOL-SDC-1610
Page 204
HOL-SDC-1610
Baseline Type
Select baseline type, fixed or dynamic.
Fixed Baseline - A specific set of patches that do not change as patch
availability changes.
Dynamic Baseline - A set of patches that meet certain criteria. The contents of
a dynamic baseline varies as the available patches change. You can also exclude
or add specific patches. Patches you select to add or exclude do not change with
new patch downloads.
1. For our example, we will select a Fixed Baseline
2. Click "Next"
Select Patches
Add patches to the Baseline
1. In the Filter box, type in "5.5
2. Select the patch "Updates esx-base"
3. Click "Next"
HOL-SDC-1610
Page 205
HOL-SDC-1610
If we were creating a Dynamic Patch Baseline, we would specify criteria to define the
patches to include.
HOL-SDC-1610
Page 206
HOL-SDC-1610
HOL-SDC-1610
Page 207
HOL-SDC-1610
HOL-SDC-1610
Page 208
HOL-SDC-1610
HOL-SDC-1610
Page 209
HOL-SDC-1610
Remediate Host
The host has now been scanned against the patch baseline we had previously attached.
We can now remediate the host. With the host esx-01a.corp.local highlighted
1. Click on "Remediate", note that the "HOL Host Baseline" baseline group is
attached.
A wizard will open up, and you will notice the "HOL Baseline" patch baseline available.
To complete patching, you would follow the wizard to complete this process and apply
the patch.
HOL-SDC-1610
Page 210
HOL-SDC-1610
Please note that for the purposes of this lab, we do not want to patch our ESXi hosts
(which is why selected a patch earlier that does not apply to our host!).
vSphere Update Manager can also be used to update the VMware tools on a virtual
machine. The following video outlines the process.
HOL-SDC-1610
Page 211
HOL-SDC-1610
vCenter Server
vCenter Server - architected to provide larger than ever scale for the biggest
virtual environments
Hosts per vCenter Server System: 1,000
Powered-on Virtual Machines per vCenter Server System: 10,000
Hosts per Cluster: 64
Virtual Machines per Cluster: 8,000
HOL-SDC-1610
Page 212
HOL-SDC-1610
HOL-SDC-1610
Page 213
HOL-SDC-1610
Additional Information
We hope you have enjoyed taking this module and have a better understanding of the
basics of using vSphere with Operations Management. Be sure to take the survey at the
end.
For more information on vRealize Operations Management, here is a list of additional
online resources you can use:
vRealize Operations Manager Video Repository https://www.vmware.com/support/
vrealize-operations-Manager-6-video.html
VMware Feature Walkthrough vSphere with Operations Management Page
http://featurewalkthrough.vmware.com/#!/vsphere-with-operationsmanagement-6
If you have time remaining, here is a list of all the Modules that are part of this lab,
along with an estimated time to complete each one. Click on the 'Table of Contents'
button to quickly jump to that Module in the manual.
The complete listing of all eight modules are:
Module 1 - Introduction to vSOM (60 Minutes)
Module 2 - Build and Manage your Virtual Infrastructure (90 Minutes)
Module 3 - Manage, Optimize, and Plan Infrastructure Capacity (60 Minutes)
Module 4 - Optimize Workload Performance While Maintaining Business Priorities (60
Minutes)
Module 5 - Ensure Business Continuity and Availability (60 Minutes)
Module 6 - Simplified Security and Compliance (60 Minutes)
Module 7 - Log Management with vRealize Log Insight - (60 Minutes)
Module 8 - Power CLI (60 Minutes)
HOL-SDC-1610
Page 214
HOL-SDC-1610
Module 3: Manage
Capacity Risk and Plan for
the Future - (60 Minutes)
HOL-SDC-1610
Page 215
HOL-SDC-1610
HOL-SDC-1610
Page 216
HOL-SDC-1610
HOL-SDC-1610
Page 217
HOL-SDC-1610
HOL-SDC-1610
Page 218
HOL-SDC-1610
This section represents all of the vCenters, Hosts and Clusters within the environment
that are connected to the vRealize Operations instance.
HOL-SDC-1610
Page 219
HOL-SDC-1610
The right pane will load the capacity remaining badge. The badge number is the
percentage of usable capacity within the object, in this case vSphere World. The badge
color is determined by the policy. The default policy is set to 0, 25, 50, 75. Where 0 is
red and anything above 75 is green. This can be adjusted for each object. We are also
presented with a graph to the right of the badge. This graph is the capacity trend for the
object over 30 days by default. This can also be adjusted for the environment.
HOL-SDC-1610
Page 220
HOL-SDC-1610
HOL-SDC-1610
Page 221
HOL-SDC-1610
HOL-SDC-1610
Page 222
HOL-SDC-1610
HOL-SDC-1610
Page 223
HOL-SDC-1610
Cluster
Cluster
Cluster
Cluster
Cluster
Cluster
Cluster
Cluster
(When finished reviewing, click the small arrow on pane border from point 5 in the
previous step, to bring back the navigator windows on the left)
HOL-SDC-1610
Page 224
HOL-SDC-1610
per week we know that the risk of it running out of space in x days is likely. We can
trigger an alert on this and proactively fixing a potential problem. In the past we may
have waited for a vCenter alert to show 95% used or for an administrator to notice and
resolve the issue. More than likely an issue such as this would go without notice until the
datastore was full and all the VM's stopped causing an outage.
The risk panel displays alerts on the environment and decedents of the selected object
in the hierarchy.
HOL-SDC-1610
Page 225
HOL-SDC-1610
HOL-SDC-1610
Page 226
HOL-SDC-1610
Risk Issues
Here we can see a summary of all the VMs that are exhibiting this issue.
1. Click on the 'View Details' link next for the bna-west entry.
HOL-SDC-1610
Page 227
HOL-SDC-1610
HOL-SDC-1610
Page 228
HOL-SDC-1610
This view will show us the Health, Risk and Efficiency for the vSphere World. vSphere
World is a grouping of all vCenters and their clusters.
HOL-SDC-1610
Page 229
HOL-SDC-1610
HOL-SDC-1610
Page 230
HOL-SDC-1610
HOL-SDC-1610
Page 231
HOL-SDC-1610
Such as Virtual Machine guest file systems out of disk space. This could cause an
immediate outage if not remedied.
HOL-SDC-1610
Page 232
HOL-SDC-1610
HOL-SDC-1610
Page 233
HOL-SDC-1610
HOL-SDC-1610
Page 234
HOL-SDC-1610
HOL-SDC-1610
Page 235
HOL-SDC-1610
From here we can quickly get a heatmap displaying the datastores. Heatmaps
graphically display information to allow the user to quickly identify points of interest.
This dashboard displays the datastores by capacity using the size of the boxes to display
the total capacity of the datastore. The color is represented by datastore workload. As
the datastore workload is increased the color will change from green to red.
Conclusion
Capacity Remaining provides administrators with a view of the available capacity of the
environment. This information which traditional took many hours to compile and track
can now be monitored in near real time allowing administrators to quickly provide data
to management on capacity trends, and future capacity shortfalls. Capacity Remaining
can be tracked at many levels to provide granularity. Understanding of object
relationship can provide further detail to scope of capacity short falls. Risk alerts can be
used to see potential capacity shortfalls in capacity. Health alerts can provide
information on immediate issues that could cause performance or availability issues.
HOL-SDC-1610
Page 236
HOL-SDC-1610
HOL-SDC-1610
Page 237
HOL-SDC-1610
Efficiency Alerts
1. Select the "Recommendations" dashboard
The Efficiency panel shows at a glance how the environment is using available
resources. Efficiency allows administrators to get the most out of the resources they
have already purchased. This can result in delaying hardware purchases. Efficiency
alerts do not require immediate attention; these alerts will just help improve the
environment.
HOL-SDC-1610
Page 238
HOL-SDC-1610
HOL-SDC-1610
Page 239
HOL-SDC-1610
Reports
Reports are a great way to consume efficiency information since this information
generally does not need to be reacted on right away. Reports may be generated at any
level. Depending on the object type selected different reports will become available
under the reports tab.
1. Select the "Reports" tab.
Oversize VM Report
1.
2.
3.
4.
View Reports
1. Select the "Generated Reports" section
2. You will see the report you just generated listed
Reports can be viewed either as a PDF or a CSV.
Other reports relating to Efficiency:
HOL-SDC-1610
Page 240
HOL-SDC-1610
Open PDF
1. Once the status shows 'Completed', click the PDF icon next to the report
2. Select "Open with Google Chrome"
3. Click OK
The report will open in Google Chrome. Reports are a great way to share the information
with vRealize Operations with another team or a manager. Reports are generated from
the object level where the report template is run. For example, if you have a vCenter
Folder of all the finance VMs. A report could be generated for just those objects. Making
the report relevant to that specific group.
Close the report when you finish reviewing it.
HOL-SDC-1610
Page 241
HOL-SDC-1610
HOL-SDC-1610
Page 242
HOL-SDC-1610
Future Analysis
Select the "Virtual Machine Reclaimable Capacity" in the Further Analysis pane.
HOL-SDC-1610
Page 243
HOL-SDC-1610
Expand vSphere World, vc east and then msbu-east in the left pane
Select the cluster "east-apps" from the list
Select the "Analysis" tab
Select the "Reclaimable Capacity" section (May have to scroll to the right)
The cluster level will show the reclaimable capacity for all the virtual machines in that
cluster. This metric will take into account the HA Failover setting in vCenter. For
HOL-SDC-1610
Page 244
HOL-SDC-1610
example, if you are using N+1 failover the vRealize Operations will add an additional
host for failover into the calculation for Reclaimable Capacity. It will also take into any
capacity reservation Buffers defined in vRealize Operations policy. The default policy is
25% this can be adjusted for your specific environment to be as aggressive or
conservative on capacity reclamation as your organization feels comfortable with.
HOL-SDC-1610
Page 245
HOL-SDC-1610
Cluster Dashboard
1. Click Home in the left pane
2. Click the arrow next to the "Dashboard List" and select the "vSphere
Clusters" dashboard under "vSphere Dashboards".
HOL-SDC-1610
Page 246
HOL-SDC-1610
There are several preconfigured dashboards. The vSphere clusters dashboard provides a
place to compare cluster utilization by CPU demand and memory usage. There are other
pre-configured dashboards that are available for viewing specific data within the
environment.
3. Click on "west-mgmt" in the "Top 25 Clusters by CPU Demand(%) (24h)"
widget. Notice the sparkline information populates in the widget below.
HOL-SDC-1610
Page 247
HOL-SDC-1610
Open west-mgmt
Let's look a bit more into the west-mgmt cluster.
Double click on the "west-mgmt".
HOL-SDC-1610
Page 248
HOL-SDC-1610
Density View
1.
2.
3.
4.
The table shows the Average to Optimal ratios for the virtual machines CPU resources in
this cluster. This means that our average virtual CPU (what's used in the virtual
machines) to physical CPU (what's installed in the ESXi hosts) is close to what vRealize
Operations has calculated as optimal.
Login to vROPs-01a
Navigate and login to the vRealize Operations Appliance, vROPS-01a.
1. Click the bookmark to "vROPS-01a"
HOL-SDC-1610
Page 249
HOL-SDC-1610
HOL-SDC-1610
Page 250
HOL-SDC-1610
Custom Datacenters
1. Click on the "Environment" globe
2. Next, click the "Custom Datacenters" link in the left-hand navigation pane.
HOL-SDC-1610
Page 251
HOL-SDC-1610
Conclusion
The Efficiency badge represents how well resources are being used. The badge is
affected by the Capacity related analysis badges. Efficiency generally does not need
immediate attention but identifies areas of optimization opportunity within the
environment. Reclaimable capacity can be a key indicator of an environments overall
capacity. Identifying reclaimable capacity can help to defer or avoid cost directly saving
on CapEx. Reports can be utilized to find areas of opportunity and to create a plan to
reclaim capacity from the environment. Density can be used to determine if a capacity
provider object is meeting its optimal density goals (optimal VM to Host ration).
HOL-SDC-1610
Page 252
HOL-SDC-1610
HOL-SDC-1610
Page 253
HOL-SDC-1610
HOL-SDC-1610
Page 254
HOL-SDC-1610
Custom Profile
1. Enter a Profile Name of "Web-Server-P2".
2. Select Object Type of "Virtual Machine" from the drop down. (TIP - type 'Virtual'
the search will show the available options - select 'Virtual Machine' from the list of
options
3. Enter a vCPU (1), Memory (512 MB) and Disk Space Allocation (5 GB) as
seen above.
This profile is based on an allocation. A reference machine can also be used by using the
"Populate metrics from..." button. Additionally, you can remove the "Allocation" from the
Filter and create a more specific workload.
Capacity Remaining
Navigate to Cluster Site A under Environment
1. Click the globe icon titled "Environment"
2. Navigate to "vSphere Hosts and Clusters", "vSphere World", "vCenterMonitor", "DataCenter Site A", "Cluster Site A"
HOL-SDC-1610
Page 255
HOL-SDC-1610
Project Creation
Customers are always adding and removing virtual machines from their environment
and it is not always easy to track all the projects that are taking place and how they will
affect the capacity of the virtual infrastructure. Let's create a project to look at how
adding additional VM's and Hosts will affect our clusters resources.
1. Select the "Projects" Tab at the top of the page.
As you can see from the graph, where the green and blue lines intersect, at the
current rate we will run out of CPU on August 18th. This is based on the current
CPU Demand trend. If a VM starts to use more or less of the allocated CPU the
date may change.
HOL-SDC-1610
Page 256
HOL-SDC-1610
HOL-SDC-1610
Page 257
HOL-SDC-1610
Create a Project
1. Give the project the name 'Add 2 VMs' and something descriptive.
2. Select the Scenarios section
Add VM Project
1. Drag "add Virtual Machine" to the right pane where it says "Drop scenarios
here"
2. Change the "Implementation Date" to 1 week forward
3. Click the up arrow to increment the servers to "2" Virtual Machine
4. Change the "Memory - Allocation model" to "512" MB
Change the "CPU - Allocation model" to "2" vCPUs
HOL-SDC-1610
Page 258
HOL-SDC-1610
HOL-SDC-1610
Page 259
HOL-SDC-1610
HOL-SDC-1610
Page 260
HOL-SDC-1610
HOL-SDC-1610
Page 261
HOL-SDC-1610
HOL-SDC-1610
Page 262
HOL-SDC-1610
HOL-SDC-1610
Page 263
HOL-SDC-1610
HOL-SDC-1610
Page 264
HOL-SDC-1610
HOL-SDC-1610
Page 265
HOL-SDC-1610
Conclusion
Capacity Remaining can be used to determine how many additional virtual machines
can be added to a cluster. Using the Custom Profile the user can specify a specific
configuration profile specific to their environment to have an easy way to determine
how many more VM's there is room for. Using projects, you can plan out adding of
resources and demand to determine when additional resources need to be added and
what resources will be constrained. The projects can be scheduled out into the future or
committed to show the actual effects on Time and Capacity remaining.
HOL-SDC-1610
Page 266
HOL-SDC-1610
Module 4: Optimize
Workload Performance
while Maintaining
Business Priorities - (60
Minutes)
HOL-SDC-1610
Page 267
HOL-SDC-1610
Module Preparation
In this module we will be covering SDRS (Storage Distributed Resource Scheduler),
SPBM (Storage Policy Base Management), Right Sizing, DRS (Distributed Resource
Scheduler) and Workload Placement. Several of these topics require load and this load
needs to exist for a period of time to help keep this module running smoothly. The next
couple of steps will walk you through generating that load.
Start CPU Load simulation on the Virtual Machines (linuxCPU-Load-01a and 02a)
Minimize any running applications. Next load PuTTY from the Desktop or from the
Launch bar.
HOL-SDC-1610
Page 268
HOL-SDC-1610
PuTTY to linux-CPU-Load-01a VM
1. Select linux-CPU-Load-01a
2. Click Load
3. Click Open
HOL-SDC-1610
Page 269
HOL-SDC-1610
HOL-SDC-1610
Page 270
HOL-SDC-1610
HOL-SDC-1610
Page 271
HOL-SDC-1610
PuTTY to linux-CPU-Load-02a VM
1.
2.
3.
4.
Note: If you see ash -lt: argument expected, you did not type the "4" at the end of
the command. If you got a message ending not found, you did not type the command
with the correct case. Simply press the Enter key and retype /opt/CPULoad.sh 4, with
the 4 and matching the letters that are lower case and upper case. The command can
also be copied from the README.txt file on the desktop, which has an example of the
command.
HOL-SDC-1610
Page 272
HOL-SDC-1610
HOL-SDC-1610
Page 273
HOL-SDC-1610
HOL-SDC-1610
Page 274
HOL-SDC-1610
Open Firefox
1. Open Mozilla Firefox from the Desktop or Quick Launch.
HOL-SDC-1610
Page 275
HOL-SDC-1610
HOL-SDC-1610
Page 276
HOL-SDC-1610
HOL-SDC-1610
Page 277
HOL-SDC-1610
HOL-SDC-1610
Page 278
HOL-SDC-1610
HOL-SDC-1610
Page 279
HOL-SDC-1610
HOL-SDC-1610
Page 280
HOL-SDC-1610
HOL-SDC-1610
Page 281
HOL-SDC-1610
Clear Alarms
The ESXi hosts are 2 CPUs for the purposes of the Lab. This is compared to a real work
ESXi host that can have 80+ cores! it is very easy to over-stress the lab and have hard
alerts set, which has been done intentionally to demonstrate learning objectives. The
manual warns you to clear them in a later section, but if they pop up at any time while
you are in the vSphere Client, clear them by clicking on the Reset to Green link. It is
on the summary tab for both Cluster Site A and each individual VM's summary tab.
For this module it should only be linux-CPU-Load-01a or linux-CPU-Load-02a.
HOL-SDC-1610
Page 282
HOL-SDC-1610
Close Firefox
1. Click the Firefox "x" to close Firefox
Preparation Conclusion
You have successfully started the CPU load simulators. Continue with the next lesson
and go enjoy the content in this module.
HOL-SDC-1610
Page 283
HOL-SDC-1610
Storage DRS
Storage DRS (SDRS) is automatic disk placement for balancing I/O and Disk Space
requirements for your virtual environment. For those familiar with DRS, SDRS is to the
VMDK (virtual disk) as DRS is to the VM (virtual machine). And much like DRS uses the
Cluster construct to aggregate hosts for a pooled compute resource, Datastore
Cluster is a construct to aggregate datastores into a pooled storage resource for
Storage DRS.
HOL-SDC-1610
Page 284
HOL-SDC-1610
This is an excellent short video covering all of the SDRS concepts like Datastore
Clusters, Load Balancing, Affinity Rules and Datastore Maintenance mode.
Note: Remember to press the play button (right arrow in the lower left hand corner)
to start the video.
HOL-SDC-1610
Page 285
HOL-SDC-1610
This video demonstrates the creation of a Datastore Cluster and specific settings for
SDRS.
Note: Remember to press the play button (right arrow in the lower left hand corner)
to start the video.
Conclusion
This concludes the Storage DRS lesson.
HOL-SDC-1610
Page 286
HOL-SDC-1610
HOL-SDC-1610
Page 287
HOL-SDC-1610
HOL-SDC-1610
Page 288
HOL-SDC-1610
HOL-SDC-1610
Page 289
HOL-SDC-1610
Right Size
Right Sizing is the art of maximizing resource utilization, while minimizing resource
contention and maintaining SLAs. vSphere remains the best method to manage basic
contention, but does not gather the necessary data required for long term analysis.
vRealize Operations has specific functions that are geared towards reducing Risk and
improving Efficiency in your environment.
For this lesson, we will be using vRealize Operations (vR Ops) to analyze VMs for Right
Sizing.
As a point of reference, vRealize Operations calculates certain Dynamic Thresholds
(DTs), Metrics and Badges nightly (default is 9 PM), which is not conducive to a Lab
where modules are completed in less than 90 minutes. For the purposes of this lab,
these values have been accelerated, however this would not be supported in a
Production environment.
HOL-SDC-1610
Page 290
HOL-SDC-1610
Open Firefox.
Minimize any running applications and load Firefox from the Desktop or from the
Launch bar.
HOL-SDC-1610
Page 291
HOL-SDC-1610
Note: The authentication source for the lab is Local Users. Additional authentication
sources can come from LDAP sources.
HOL-SDC-1610
Page 292
HOL-SDC-1610
HOL-SDC-1610
Page 293
HOL-SDC-1610
Summary Tab
Click on the swizzles to expand the vSphere World, vCenter-Monitor, Datacenter
Site A and Cluster Site A and stay highlighted on Cluster Site A. The Summary tab
should automatically be selected. if not, select the Summary tab.
1. The first thing to notice is the two Alert boxes for each major badge (Health, Risk
and Efficiency). The top row boxes apply to the object highlighted in the
HOL-SDC-1610
Page 294
HOL-SDC-1610
navigation pane (in this case Cluster Site A). The lower alert boxes apply to all the
decedents of the selected object. The Health Badge color can vary. Sufficient
load was generated to cause Health to go "red" in the example above. Since this
is a lab, you might also see slightly different alerts. Alerts in vRealize Operations
are smart and can combine multiple symptoms and intervals prior to triggering.
vCenter alerts should still be used for immediate issues like Network link down,
ESXi host failures, HA events and the like that are immediate in nature. vR Ops
alerts are based on data collected at 5 minute intervals (default setting that
should only be altered in rare circumstances) and augment vSphere by being able
to correlate issue over time like chronic high workload (stress). Although the
focus is Right Sizing, the following will provide a brief description of the major
badges and associated alerts.
2. The Health alerts most closely relate to vSphere. For this badge, vR Ops can
augment vSphere by being able to correlate issue like high workload and high
anomalies as an identification of abnormal VM behavior. Health and the
associated alerts would be more suited for daily operations management
activities rather than a Right Sizing activity. The minor badges associated with
Health are Workload, Anomalies and Faults.
3. The Risk alerts are an excellent starting point for any Right Sizing activity
focused on Undersized VMs. The minor badges associated with Risk are
Capacity Remaining,Time Remaining and Stress. Capacity Remaining and
Time Remaining are functions of Capacity Management. The Stress minor badge
is an excellent indicator for Right Sizing objects monitored by vR Ops that are
undersized. If you are new to vRealize Operations, Right Sizing undersized VMs
(versus Oversized VMs) is an excellent place to start in your virtualized
environment.
4. The Efficiency alerts are focused on optimization. For any Right Sizing exercise
focused on Oversized VMs, Efficiency is the place to go. The minor badges
associated with Efficiency are Reclaimable Capacity, Density and
Compliance. Focus around the Reclaimable Capacity minor badge would help
identify Oversized, Powered Off and idle VM capacity that could be reclaimed.
HOL-SDC-1610
Page 295
HOL-SDC-1610
HOL-SDC-1610
Page 296
HOL-SDC-1610
HOL-SDC-1610
Page 297
HOL-SDC-1610
HOL-SDC-1610
Page 298
HOL-SDC-1610
The navigation pane provides the Alert Details and the Impacted Object.
On the right, there is detailed information on the Alert.
in the middle, the Summary tab has the symptom(s) causing the alert.
If Recommendations were created for the Alert, they will also be displayed
potentially with a one-click remediation button if an action is associated.
5. As a final step, you can click on the impacted Object Symptoms, Timeline
and Relationships tabs. The Metric Charts tab allows you to drill into detail
metrics for the impacted object and the Notes tab will contain any notes that
have been added to this specific alert.
HOL-SDC-1610
Page 299
HOL-SDC-1610
Reports Tab
1. From the reports tab, use the scroll bar to show the Virtual Machine report
Stressed VMs Report. The reports are in alphabetical order.
2. Click on the Stressed VMs Report and avoid clicking on the Generate Reports
or Scheduled links.if you click on either, just navigate back to the Report
Templates tab.
3. Click on the Run Template button. This will start the report generation.
4. Click on the Generated Reports link. You could also click on the Generated
Reports tab, (at the top of the screen) but this will not filter to just the Stressed
VMs Report. For the lab, this is not critical but when you have dozens of
generated reports it becomes important to filter to reduce the time it takes to find
a specific report.
HOL-SDC-1610
Page 300
HOL-SDC-1610
Note: For the purposes of this lab, we are only looking at a single report. As you can
see there are dozens of reports available at the Cluster level. The reports will change
based on where you navigate to in the navigation bar, but you could run this report at
the vSphere World level to capture all stressed VMs identified in vR Ops. We only have
a single cluster with two ESXi hosts, so we just ran the report at the cluster level.
HOL-SDC-1610
Page 301
HOL-SDC-1610
HOL-SDC-1610
Page 302
HOL-SDC-1610
HOL-SDC-1610
Page 303
HOL-SDC-1610
HOL-SDC-1610
Page 304
HOL-SDC-1610
HOL-SDC-1610
Page 305
HOL-SDC-1610
1. At the top, the highest stressed resource is displayed. In many cases, the level of
stress for the object will be low and the Stress minor badge will be green. Since
we are generating CPU load, CPU Demand will be displayed in this box.
2. Worth noting is the What is Stress? link and See video link. Click the What is
Stress? link to get a better understanding of this minor badge.After reading the
definition of Stress, click the X to close the informational window. Do not bother
clicking the See video link in the upper corner or in the What is Stress? link.
Due to the configuration of this lab environment, these links will not work.
3. The Workload Graph is a great graphical representation of when demand is the
highest. Since this is a lab environment with no historical data, this does not do
justice to the graphical load over time that will be displayed in a Production
deployment where data has been collected for week/months.
4. The links in Further Analysis will navigate you to the Details tab and the
specific View selected. You can click on any of the links to see the Details view.
Once complete, just navigate back to the Analysis / Stress tabs.
Note: In the screen shot above you will notice the stress minor badge is Red and at
235, while in your lab could be Green. As you see in the top box (circled), stress is
trended on a 30-day basis. Without playing with the Lab's date/time or tweaking the
stress trending, there isn't sufficient time for the system to calculate and update for
issues that persist over multiple days and the analytics engine to determine a stress
score other than zero. The purpose of this lesson is to demonstrate the content
available and not the specific values.
HOL-SDC-1610
Page 306
HOL-SDC-1610
HOL-SDC-1610
Page 307
HOL-SDC-1610
HOL-SDC-1610
Page 308
HOL-SDC-1610
Conclusion
This lesson demonstrated the power of Alerts, Reports and the Analysis Tab / Stress subtab as it relates to Stress and Right Sizing.
This concludes this lesson on Right Size.
HOL-SDC-1610
Page 309
HOL-SDC-1610
HOL-SDC-1610
Page 310
HOL-SDC-1610
HOL-SDC-1610
Page 311
HOL-SDC-1610
HOL-SDC-1610
Page 312
HOL-SDC-1610
HOL-SDC-1610
Page 313
HOL-SDC-1610
never performed a manual vMotion (Migrate..), you can continue through the next
steps to see the screens and options that are presented in the wizard.
HOL-SDC-1610
Page 314
HOL-SDC-1610
HOL-SDC-1610
Page 315
HOL-SDC-1610
Note: vMotion now allows cross Cluster, Resource Pools and vApps vMotions. The
wizard allows this by selecting the appropriate filter. These types of enhancements are
in support of "Any workload... Anywhere..."
HOL-SDC-1610
Page 316
HOL-SDC-1610
HOL-SDC-1610
Page 317
HOL-SDC-1610
HOL-SDC-1610
Page 318
HOL-SDC-1610
HOL-SDC-1610
Page 319
HOL-SDC-1610
HOL-SDC-1610
Page 320
HOL-SDC-1610
If not already expanded, click the swizzles and highlight Cluster Site A.
Click on the Manage Tab.
Then the Settings Tab.
And finally the vSphere DRS options.
The values should be greyed out, which would mean DRS is not enabled.
Resource Pools
Assuming DRS is disabled on Cluster Site A, select the Actions pull down and notice
that New Resource Pool option is greyed out. This is because Resource Pools require
DRS to be enabled. Resource Pools are just one of the powerful constructs that allow for
the prioritization of resources. Click anywhere outside of the pull down options and the
Actions pull down will close.
HOL-SDC-1610
Page 321
HOL-SDC-1610
HOL-SDC-1610
Page 322
HOL-SDC-1610
HOL-SDC-1610
Page 323
HOL-SDC-1610
Automation Levels
The chart shows how DRS affects placement and migration according to the setting
Manual, Partially Automated or Fully Automated.
HOL-SDC-1610
Page 324
HOL-SDC-1610
HOL-SDC-1610
Page 325
HOL-SDC-1610
HOL-SDC-1610
Page 326
HOL-SDC-1610
1. Click and hold down the mouse button on the Alarms pane.
2. Drag the Alarms pane into the Recent Tasks pane.
3. Once dragged into the Recent Tasks pane, the arrow buttons will appear.
Hovering over the Left arrow with your mouse will put the Alarm pane next to
the Recent Task pane. Release the mouse button to complete the move of the
Alarm pane.
HOL-SDC-1610
Page 327
HOL-SDC-1610
HOL-SDC-1610
Page 328
HOL-SDC-1610
Note: Customize the Web Client to suit your needs. This layout is nice because it
maximizes the real estate, while still informing you if there are any Alarms, Work in
Progress or Recent Tasks. In the screen shot, you can see we have one Alarms and zero
Work In Progress and Recent Tasks. Your lab may differ in the number of Alarms, Work in
Progress or Recent Tasks.
HOL-SDC-1610
Page 329
HOL-SDC-1610
HOL-SDC-1610
Page 330
HOL-SDC-1610
two ESXi hosts and moving the Migration threshold to "Conservative" with a
standard deviation of .3 would not put the cluster in a balanced state.
Click esx-01a.corp.local
Click the Related Objects tab
Click the Virtual Machines tab
You should now see only one of the CPU-Load VMs. In this case it is linux-CPULoad-01a.
HOL-SDC-1610
Page 331
HOL-SDC-1610
HOL-SDC-1610
Page 332
HOL-SDC-1610
HOL-SDC-1610
Page 333
HOL-SDC-1610
Disable DRS
To insure DRS does not interfere with other modules, you will now disable DRS for the
cluster.
1.
2.
3.
4.
5.
6.
7.
HOL-SDC-1610
Page 334
HOL-SDC-1610
HOL-SDC-1610
Page 335
HOL-SDC-1610
HOL-SDC-1610
Page 336
HOL-SDC-1610
HOL-SDC-1610
Page 337
HOL-SDC-1610
HOL-SDC-1610
Page 338
HOL-SDC-1610
HOL-SDC-1610
Page 339
HOL-SDC-1610
HOL-SDC-1610
Page 340
HOL-SDC-1610
Cluster Reports
1. Toggle the swizzles for vSphere World,vcsa-01a.corp.local and Datacenter
Site A.
2. Highlight Cluster Site A,
3. Select the Reports tab.
4. Confirm the Reports Templates tab is selected.
5. Type the word Distribution in the filter and press the Enter key.
6. Highlight Host CPU Demand (%) Distribution Report. Be careful not to select
the Generated reports or Schedules links.
7. Click the Run Template icon.
8. Highlight Host Memory Usage (%) Distribution Report. Again, be careful not
to select the Generated reports or Schedules links. Click the Run Template
icon for this report as well (repeating step 7)
Note: You can go to the Generated reports link and view the reports, but they will be
covered in the screen shot in the next step. This report is looking at 7 days worth of
data and with the Lab only running for an hour, the results will not be completely
accurate.
HOL-SDC-1610
Page 341
HOL-SDC-1610
4. We have small Linux VMs with the same workloads driving the utilization, so it is
very easy for the ESXi hosts to have comparable workloads. in this example both
are using 40-50% Memory Usage and 40-50% CPU Demand. if you saw this in the
real world, your ESXi hosts are using similar amount of RAM / CPU and this would
not be considered optimal for a Production Environment. Memory tends to be
more static and can run in the 70-90% usage range, while CPU demand tends to
be more dynamic and is better keep in the 40-60% range. Ultimately, reports like
these give you the necessary visibility to make capacity decisions for any type of
environment.
5. In the real world, you are more likely to see Memory Usage in a Bell Shaped curve
ranging from 60-90% while CPU Demand is a Bell Shaped curve ranging from
10-30%. If you saw a cluster distribution like this, you could use it for justification
of adding more physical memory to the servers in the cluster. This would allow
more workloads in the Cluster to raise your CPU Demand towards 50% (or higher)
without exceeding physical memory capacity leading to contention.
Note: vSphere with Operations Manager provides needed visibility. Most organizations
have a general idea on what is considered an acceptable usage/demand percentage to
meet SLAs and Business priorities. vRealize Operations allows an organization to make
those decisions and then monitor the infrastructure to insure the environment is not
exceeding or grossly under those target goals.
Module Clean-up
To insure the VMs do not interfere with other modules, please stop the CPU load and
close all the applications.
HOL-SDC-1610
Page 342
HOL-SDC-1610
Close Firefox
1. From the Task Bar, right click on Firefox.
2. Select Close Window.
HOL-SDC-1610
Page 343
HOL-SDC-1610
Conclusion
DRS is a very mature / battle tested feature that should be enabled on Clusters and set
to fully automated. And based on Cluster requirements, DRS provides granular control.
As demonstrated, DRS handles real time cluster balancing against random spikes and
HOL-SDC-1610
Page 344
HOL-SDC-1610
insuring workloads are balanced in the short term. This can be further augmented with
Cluster analysis via vRealize Operations insuring optimal performance and a higher level
of visibility over a longer period of time.
This concludes Demonstrate automatic load balancing for assuring proper
resource allocation.
HOL-SDC-1610
Page 345
HOL-SDC-1610
HOL-SDC-1610
Page 346
HOL-SDC-1610
HOL-SDC-1610
Page 347
HOL-SDC-1610
Custom Datacenter
1. Confirm you are on Environment Overview in the navigation pane. Selecting
the Custom Datacenters (see arrow in the navigation pane) will take you to the
currently defined Custom Datacenters for Viewing and Analysis.
2. Select the Custom Datacenters tab in the details pane. This pane allows you to
Add, Edit, Clone or Delete Custom Datacenters.
3. As an example, there is a Custom Datacenter called Shared. As you can see, the
Major Badges for Health, Risk and Efficiency are displays with their current color
status.
4. Select the Plus icon to create a new Custom Datacenter.
HOL-SDC-1610
Page 348
HOL-SDC-1610
Note: The most important concept for Custom Datacenters to understand is that it is
a Container construct. ThevSphere World container contains all objects being
collected. Even the ESXi Hosts are containers that contain Virtual Machines (VMs).
Ultimately, the Custom Datacenter construct is focused on the VMs that reside within
the selected containers and doing analysis on where best to locate VMs within the
selected object container. In this example we have selected Cluster Site A (and inherited
esx-01a, esx-02a and the associated VMs) and Cluster Site B, so any monitoring or
analysis would be for both Clusters. Cluster Site B is an empty cluster due to limitations
imposed in the lab. In a Production environment, there could easily be hundreds of
objects selected. A great real world example is common compute clusters in a
Production environment. Many companies have multiple shared clusters. Combining
these into a single Custom Datacenter and allowing vRealize Operations to rebalance
the workloads across multiple clusters is an excellent use-case for WLP rebalance.
HOL-SDC-1610
Page 349
HOL-SDC-1610
HOL-SDC-1610
Page 350
HOL-SDC-1610
HOL-SDC-1610
Page 351
HOL-SDC-1610
Navigate to Administration
1. In the navigation pane, click the Administration Icon. If you hover over the
icon, it will display the associated icon name in yellow. Depending on your screen
resolution, you may need to click the >> to see the Administration Icon.
Note: Since we have navigated down in the tree, we do not have the ability to use the
navigation tree without first selecting the Home icon.
HOL-SDC-1610
Page 352
HOL-SDC-1610
Note: We navigated to the Default Policy because this is the active policy. You can
click on the Active Policies tab to see the active policies. vRealize Operations allows
for granular control of how objects are analyzed and displayed bases on groups and
policies. Policies is a very extensive function of vROps and should be thoroughly
thought out prior to building a Policy Hierarchy and assigning Objects via Groups.
Workload Automation
Your screen will probably not show everything in the screen shot. Use the scroll bars to
view all items in the pane.
1. As you can see there are 8 sections to the Policy Wizard. It is beyond the scope of
this lesson to cover all eight sections. It is worth pointing out that section 8
(Apply Policy to Groups) is how you make a policy active. Once a policy is
HOL-SDC-1610
Page 353
HOL-SDC-1610
2.
3.
4.
5.
associated with a group, the changes made to the policy will now take affect for
that group
Select Workload Automation. We are going to focus on #4, Workload
Automation.
The first thing to point out is the Lock / Unlock toggle. You cannot edit the
properties while the specific section is locked. Balance Workloads had already
been modified to Aggressive. For Virtual Machines selected to move during
balance, which is all the way at the bottom,toggle the lock icon to unlocked. You
can now select the radio button for Virtual Machines with lowest demand
Worth noting is the graphical representation of the settings. Unlock Consolidate
Workloads and click near Maximum. You can't click on the slider and drag it.
Notice the change in the graphical representation and how it shows hosts
evacuated (no VMs). Now toggle the lock and it will reset it to None and change
the graphical representation back.
Click the Save button to save the changes.
Note: There are three sections that affect Workload Placement. They are Balance
Workloads, Consolidate Workloads and Advanced Setting. They are very much
self-explanatory. Balance Workloads is focused on balancing workloads across Hosts
associated with this policy. Consolidate Workloads will attempt to evacuate hosts so
workloads are running on as few hosts as possible based on the setting. The default is
none, so no consolidation will happen. The final section is Advanced Settings. The two
check box options are Virtual Machine with lowest demand and Virtual Machine
with highest demand. Since it is a radio button, you can only select one. For the
purposes of this lab select the radio button for Virtual Machine with lowest demand.
HOL-SDC-1610
Page 354
HOL-SDC-1610
This Introduction Lab is not large enough to properly demonstrate WLP. VMware has an
excellent WLP YouTube Video to watch.
HOL-SDC-1610
Page 355
HOL-SDC-1610
Note: Remember to press the play button (right arrow in the lower left hand corner)
to start the video.
Conclusion
This concludes the lesson on Workload Placement (WLP) Rebalance.
HOL-SDC-1610
Page 356
HOL-SDC-1610
Module 5: Ensure
Business Continuity and
Availability - (60 Minutes)
HOL-SDC-1610
Page 357
HOL-SDC-1610
HOL-SDC-1610
Page 358
HOL-SDC-1610
HA Primary Components
HOL-SDC-1610
Page 359
HOL-SDC-1610
HOL-SDC-1610
Page 360
HOL-SDC-1610
HOL-SDC-1610
Page 361
HOL-SDC-1610
HOL-SDC-1610
Page 362
HOL-SDC-1610
HOL-SDC-1610
Page 363
HOL-SDC-1610
HOL-SDC-1610
Page 364
HOL-SDC-1610
HOL-SDC-1610
Page 365
HOL-SDC-1610
HOL-SDC-1610
Page 366
HOL-SDC-1610
Cluster Settings
1. Click vSphere HA under Services to bring up the settings for high availability.
Note that you may need to scroll to the top of the list.
2. Click Edit.
HOL-SDC-1610
Page 367
HOL-SDC-1610
HOL-SDC-1610
Page 368
HOL-SDC-1610
HOL-SDC-1610
Page 369
HOL-SDC-1610
HOL-SDC-1610
Page 370
HOL-SDC-1610
HOL-SDC-1610
Page 371
HOL-SDC-1610
HOL-SDC-1610
Page 372
HOL-SDC-1610
Confirm VM Placement
1. Ensure you are on the Host and Clusters navigation tab.
2. Drill down and highlight esx-01a.corp.local.
3. Select the Related Objects tab
HOL-SDC-1610
Page 373
HOL-SDC-1610
HOL-SDC-1610
Page 374
HOL-SDC-1610
HOL-SDC-1610
Page 375
HOL-SDC-1610
HOL-SDC-1610
Page 376
HOL-SDC-1610
Go back to Firefox and click the Host and Clusters tab in the navigation pane
Select Cluster Site A.
Select the Summary tab.
Click the Refresh icon until you start receiving information about the vSphere
HA host status and any failover actions being initiated.
After a few seconds you should start receiving alerts telling you about the vSphere HA
host status for esx-01a.corp.local host. Few seconds later the vSphere HA failover will
start giving you some progress status telling you information on how many virtual
machine in the current cluster are being restarted.
Note: Depending on the number of VMs you had running on esx-01a, the warning
message will differ from the screenshot.
HOL-SDC-1610
Page 377
HOL-SDC-1610
HOL-SDC-1610
Page 378
HOL-SDC-1610
HOL-SDC-1610
Page 379
HOL-SDC-1610
HOL-SDC-1610
Page 380
HOL-SDC-1610
HOL-SDC-1610
Page 381
HOL-SDC-1610
VM Component Protection
If VM Component Protection (VMCP) is enabled, vSphere HA can detect datastore
accessibility failures and provide automated recovery for affected virtual machines.
VMCP provides protection against datastore accessibility failures that can affect a virtual
machine running on a host in a vSphere HA cluster. When a datastore accessibility
failure occurs, the affected host can no longer access the storage path for a specific
datastore. You can determine the response that vSphere HA will make to such a failure,
ranging from the creation of event alarms to virtual machine restarts on other hosts.
Types of Failure
There are two types of datastore accessibility failure:
PDL (Permanent Device Loss) is an unrecoverable loss of accessibility that occurs
when a storage device reports the datastore is no longer accessible by the host.
This condition cannot be reverted without powering off virtual machines.
APD (All Paths Down) represents a transient or unknown accessibility loss or any
other unidentified delay in I/O processing. This type of accessibility issue is
recoverable.
In this lesson we will experiment with an APD failure.
HOL-SDC-1610
Page 382
HOL-SDC-1610
Note: If for any reason no virtual machines are hosted on the selected host, please
select the esx-01a.corp.local and migrate at least one virtual machine on esx-02a ESXi
host.
HOL-SDC-1610
Page 383
HOL-SDC-1610
HOL-SDC-1610
Page 384
HOL-SDC-1610
HOL-SDC-1610
Page 385
HOL-SDC-1610
Note: I might take a few seconds before vSphere Web Client display the APD condition.
If it's not yet displayed, click refresh until the condition is displayed and proceed to the
next step.
HOL-SDC-1610
Page 386
HOL-SDC-1610
Confirm VM Placement
After the minimal delay previously configured in the vSphere HA settings (1 minute), the
VMs will be shutdown on the host experiencing an All Paths Down event and will be
restarted on one of the available hosts in the Cluster.
1.
2.
3.
4.
5.
NOTE: After 1 minute of esx-02a.corp.local's storage being inaccessible, the VM's that
were running on it will start to shut down and be restarted on esx-01a.corp.local. The
overall process will take longer than 1 minute.
HOL-SDC-1610
Page 387
HOL-SDC-1610
HOL-SDC-1610
Page 388
HOL-SDC-1610
Restart session
From the Putty menu in the top left hand corner, select 'Restart Session'.
Reconnect Storage
Issue the following command to re-establish the storage connection:
esxcli network ip interface ipv4 set -i vmk1 -I 10.10.20.52 -N 255.255.255.0 -t static
HOL-SDC-1610
Page 389
HOL-SDC-1610
HOL-SDC-1610
Page 390
HOL-SDC-1610
such a case, the VM Monitoring service determines that the virtual machine has failed
and the virtual machine is rebooted to restore service.
Occasionally, virtual machines or applications that are still functioning properly stop
sending heartbeats. To avoid unnecessary resets, the VM Monitoring service also
monitors a virtual machine's I/O activity. If no heartbeats are received within the failure
interval, the I/O stats interval (a cluster-level attribute) is checked. The I/O stats interval
determines if any disk or network activity has occurred for the virtual machine during
the previous two minutes (120 seconds). If not, the virtual machine is reset. This default
value (120 seconds) can be changed using the advanced option das.iostatsinterval.
To enable Application Monitoring, you must first obtain the appropriate SDK (or be using
an application that supports VMware Application Monitoring) and use it to set up
customized heartbeats for the applications you want to monitor. After you have done
this, Application Monitoring works much the same way that VM Monitoring does. If the
heartbeats for an application are not received for a specified time, its virtual machine is
restarted.
You can configure the level of monitoring sensitivity. Highly sensitive monitoring results
in a more rapid conclusion that a failure has occurred. While unlikely, highly sensitive
monitoring might lead to falsely identifying failures when the virtual machine or
application in question is actually still working, but heartbeats have not been received
due to factors such as resource constraints. Low sensitivity monitoring results in longer
interruptions in service between actual failures and virtual machines being reset. Select
an option that is an effective compromise for your needs.
After failures are detected, vSphere HA resets virtual machines. The reset ensures that
services remain available. To avoid resetting virtual machines repeatedly for nontransient errors, by default, virtual machines will be reset only three times during a
certain configurable time interval. After virtual machines have been reset three times,
vSphere HA makes no further attempts to reset the virtual machines after subsequent
failures until after the specified time has elapsed. You can configure the number of
resets using the Maximum per-VM resets custom setting.
In this lesson, we will experiment with a VM failure.
HOL-SDC-1610
Page 391
HOL-SDC-1610
HOL-SDC-1610
Page 392
HOL-SDC-1610
HOL-SDC-1610
Page 393
HOL-SDC-1610
NOTE : You will not see a response from the PuTTY window. It will become unresponsive
and you will eventually receive a network error from Putty.
HOL-SDC-1610
Page 394
HOL-SDC-1610
HOL-SDC-1610
Page 395
HOL-SDC-1610
The following video will show the basics to managing vSphere fault in vRealize
Operation Manager.
Conclusion
This concludes the vSphere HA lesson.
We were able to successfully demonstrate vSphere response to the following events:
HOL-SDC-1610
Page 396
HOL-SDC-1610
Host Failure
Datastore All Paths Down failure
VM failure
HOL-SDC-1610
Page 397
HOL-SDC-1610
HOL-SDC-1610
Page 398
HOL-SDC-1610
HOL-SDC-1610
Page 399
HOL-SDC-1610
HOL-SDC-1610
Page 400
HOL-SDC-1610
Here we can see that the portgroup has been configured to distribute the network traffic
across all available uplinks using the Route based on originating virtual port policy.
It will detect a network failure only if a link is declared down at the layer 2 level. We can
also see that if an uplink comes back online again after a failure, it will be automatically
added to the network team.
From that screen you can easily observe that there are two active uplinks for vds-site-a
on that host. The first uplink is vmnic0. As we can see, the Management Network, the
HOL-SDC-1610
Page 401
HOL-SDC-1610
Storage Network and the vMotion Network rely on the two uplinks to communicate with
storage, other ESXi hosts and allow remote management.
We will simulate an uplink failure, where one of the two uplinks will get disconnected.
HOL-SDC-1610
Page 402
HOL-SDC-1610
HOL-SDC-1610
Page 403
HOL-SDC-1610
HOL-SDC-1610
Page 404
HOL-SDC-1610
HOL-SDC-1610
Page 405
HOL-SDC-1610
HOL-SDC-1610
Page 406
HOL-SDC-1610
HOL-SDC-1610
Page 407
HOL-SDC-1610
Select esx-01a.corp.local.
Select the Manage tab.
Click Networking.
Select Virtual switches.
Select vds-site-a.
Scroll to see the uplinks status.
Here we can see that the state of the uplink is being reflected on that screen.
HOL-SDC-1610
Page 408
HOL-SDC-1610
HOL-SDC-1610
Page 409
HOL-SDC-1610
Conclusion
This concludes the Teaming and Failover lesson.
We were able to successfully demonstrate the vSphere is able to transparently balance
network traffic and failover in the advent of a network link failure.
Lesson clear up - please close the command prompt and putty session.
HOL-SDC-1610
Page 410
HOL-SDC-1610
HOL-SDC-1610
Page 411
HOL-SDC-1610
Module 6: Simplify
Security and Compliance (60 Minutes)
HOL-SDC-1610
Page 412
HOL-SDC-1610
HOL-SDC-1610
Page 413
HOL-SDC-1610
HOL-SDC-1610
Page 414
HOL-SDC-1610
HOL-SDC-1610
Page 415
HOL-SDC-1610
Click
Click
Click
Click
HOL-SDC-1610
Cluster Site A.
Manage.
Update Manager.
the Attach Baseline... button.
Page 416
HOL-SDC-1610
HOL-SDC-1610
Page 417
HOL-SDC-1610
Confirm Scan
Make sure both boxes are checked and click OK to start the scan.
HOL-SDC-1610
Page 418
HOL-SDC-1610
HOL-SDC-1610
Page 419
HOL-SDC-1610
HOL-SDC-1610
Page 420
HOL-SDC-1610
HOL-SDC-1610
Page 421
HOL-SDC-1610
HOL-SDC-1610
Page 422
HOL-SDC-1610
Default Policy
Click on the Administrative tab (the gear) and click on Policies in the left-hand
navigation pane.
NOTE: Depending on your screen size, you may need to click the '>>' in order to select
the Administration tab.
HOL-SDC-1610
Page 423
HOL-SDC-1610
HOL-SDC-1610
Page 424
HOL-SDC-1610
HOL-SDC-1610
Page 425
HOL-SDC-1610
HOL-SDC-1610
Page 426
HOL-SDC-1610
HOL-SDC-1610
Page 427
HOL-SDC-1610
HOL-SDC-1610
Page 428
HOL-SDC-1610
HOL-SDC-1610
Page 429
HOL-SDC-1610
HOL-SDC-1610
Page 430
HOL-SDC-1610
Conclusion
We identified and resolved and out of compliance rule for the host object. Four or more
collection cycles after you make the change to the host settings, the rule should no
longer be included in the list of violated rules for the host
HOL-SDC-1610
Page 431
HOL-SDC-1610
HOL-SDC-1610
Page 432
HOL-SDC-1610
measure, ensure that the ESXi Shell and SSH services are also disabled. Those services
are disabled by default.
When a host is in lockdown mode, users on the Exception Users list can access the host
from the ESXi Shell and through SSH if they have the Administrator role on the host.
This access is possible even in strict lockdown mode. Leaving the ESXi Shell service and
the SSH service disabled is the most secure option.
Note: The Exception Users list is meant for service accounts that perform specific tasks
such as host backups, and not for administrators. Adding administrator users to the
Exception Users list defeats the purpose of lockdown mode.
HOL-SDC-1610
Page 433
HOL-SDC-1610
HOL-SDC-1610
Page 434
HOL-SDC-1610
HOL-SDC-1610
Page 435
HOL-SDC-1610
HOL-SDC-1610
Page 436
HOL-SDC-1610
HOL-SDC-1610
Page 437
HOL-SDC-1610
Note: If Active Directory authentication would have been activated on the host, you
would also be able to choose a user from the Active Directory domain.
HOL-SDC-1610
Page 438
HOL-SDC-1610
Verify settings
If everything matches the image, click OK to continue.
HOL-SDC-1610
Page 439
HOL-SDC-1610
HOL-SDC-1610
Page 440
HOL-SDC-1610
Search for the modifications that you just completed when you activated Lockdown
Mode and look at the details of the related events.
Note: You can view events associated with a single object or view all vSphere events.
The events list for a selected inventory object includes events associated with child
objects. vSphere keeps information about tasks and events for 30 days. Alternatively,
you could select any object in the inventory tree if you want to narrow the search scope.
HOL-SDC-1610
Page 441
HOL-SDC-1610
HOL-SDC-1610
Page 442
HOL-SDC-1610
HOL-SDC-1610
Page 443
HOL-SDC-1610
HOL-SDC-1610
Page 444
HOL-SDC-1610
HOL-SDC-1610
Page 445
HOL-SDC-1610
You can use this report to help determine whether the number of objects in your
environment exceeds a supported limit.
HOL-SDC-1610
Page 446
HOL-SDC-1610
Conclusion
We demonstrated how to restrict access to vSphere ESXi host using the Lockdown Mode
option. We also demonstrated how to track changes on any objects managed by
vCenter Server. Additionally, we demonstrated the audit feature of vRealize Operation
and how to track license usage.
HOL-SDC-1610
Page 447
HOL-SDC-1610
HOL-SDC-1610
Page 448
HOL-SDC-1610
Administration
In the vSphere Web Client, click the Home icon and select Administration.
Roles
Verify the Roles tab is selected.
HOL-SDC-1610
Page 449
HOL-SDC-1610
Create a Role
Click the green + to create a role.
Role name
1. Name the role HOL Role
2. Tick the All Privileges box
3. Click the OK button to create the new role
HOL-SDC-1610
Page 450
HOL-SDC-1610
HOL-SDC-1610
Page 451
HOL-SDC-1610
Remove Permissions
Let's say that your company has separate teams to manage networking and storage, so
the HOL Role does not need access to either of them.
Uncheck the boxes for Networking and Storage views and click OK.
HOL-SDC-1610
Page 452
HOL-SDC-1610
Clone a Role
1. Click on the role HOL Role to select it
2. Click the Clone button
HOL-SDC-1610
Page 453
HOL-SDC-1610
HOL-SDC-1610
Page 454
HOL-SDC-1610
HOL-SDC-1610
Page 455
HOL-SDC-1610
HOL-SDC-1610
Page 456
HOL-SDC-1610
New Name
1. Rename the role to HOL Admin Role
2. Click OK
HOL-SDC-1610
Page 457
HOL-SDC-1610
Before removing a role from a vCenter Server system that is part of a connected group
in Linked Mode, check the use of that role on the other vCenter Server systems in the
group. Removing a role from one vCenter Server system also removes that role from all
other vCenter Server systems in the group, even if you reassign permissions to another
role on the current vCenter Server system.
Delete Role
1. Click on the role HOL Admin Role to select it.
2. Click the Delete button.
Confirm Deletion
Click Yes to confirm you want to delete this role.
HOL-SDC-1610
Page 458
HOL-SDC-1610
Role Deleted
We can see that the role named HOL Admin Role has been deleted.
Creating unique and granular roles for users in your organization enables better security
for your vSphere infrastructure.
This concludes this lesson on User Access and Authentication Roles.
HOL-SDC-1610
Page 459
HOL-SDC-1610
sources, set the default identity source, and create users and groups in the
vsphere.local identity source.
HOL-SDC-1610
Page 460
HOL-SDC-1610
HOL-SDC-1610
Page 461
HOL-SDC-1610
Administration
In the vSphere Web Client, click the Home icon and select Administration.
HOL-SDC-1610
Page 462
HOL-SDC-1610
HOL-SDC-1610
Page 463
HOL-SDC-1610
HOL-SDC-1610
Page 464
HOL-SDC-1610
HOL-SDC-1610
Page 465
HOL-SDC-1610
HOL-SDC-1610
Page 466
HOL-SDC-1610
HOL-SDC-1610
Page 467
HOL-SDC-1610
Add Principals
1.
2.
3.
4.
5.
6.
HOL-SDC-1610
Page 468
HOL-SDC-1610
HOL-SDC-1610
Page 469
HOL-SDC-1610
HOL-SDC-1610
Page 470
HOL-SDC-1610
Select a Role
1. Select the HOL Dev Role from the Assigned Role drop-down menu.
2. Leave the Propagate to children check box selected.
3. Click OK.
Note: The roles that are assigned to the object appear in the menu. The privileges
contained in the role are listed in the section below the role title. If you assign a global
and do not select Propagate, the users or groups associated with this permission do not
HOL-SDC-1610
Page 471
HOL-SDC-1610
have access to the objects in the hierarchy. They only have access to some global
functionality such as creating roles.
HOL-SDC-1610
Page 472
HOL-SDC-1610
HOL-SDC-1610
Page 473
HOL-SDC-1610
2. If the tab is not opened or you closed it, simply click the 'vROPS-01a' shortcut
and use Admin and VMware1! to log back in.
3. If you were logged out, use Admin and VMware1! to log back in.
Authentication Sources
You can obtain user accounts from external sources so that you can use them in your
vRealize Operations Manager instance.
Open Firefox and log into vROPS-01a using the bookmarked shortcut, user = 'Admin'
password = 'VMware1!' if not already open.
HOL-SDC-1610
Page 474
HOL-SDC-1610
External sources include any identity source that uses the Lightweight Directory Access
Protocol (LDAP), such as Active Directory and OpenLDAP. The external sources provide
the authentication for these users.
1. Click the Administration icon (you may need to use the '>>' to see the
Administration icon).
2. Select Authentication Sources.
3. Click the green + icon to add a new authentication source.
HOL-SDC-1610
Page 475
HOL-SDC-1610
vRealize Operations Manager is now ready to import users or groups from the newly
created external authentication source.
HOL-SDC-1610
Page 476
HOL-SDC-1610
Roles
You can assign users specific roles to perform actions and view features and objects in
vRealize Operations Manager. With role-based access, users can only perform the
actions that their permissions allow as designated by a system administrator.
1. In the vRealize Operations Manager Client, click the Administration icon.
2. Select Access Control.
3. Select Roles.
HOL-SDC-1610
Page 477
HOL-SDC-1610
Create a Role
1. On the left pane, select Access Control.
2. Click the Roles tab.
3. Click the green + to create a role.
Role Name
1. Name the role HOL Role
2. Click the OK button to create the new role
Note: Once a name has been given to a role, it cannot be changed.
HOL-SDC-1610
Page 478
HOL-SDC-1610
HOL-SDC-1610
Page 479
HOL-SDC-1610
Edit Permissions
Let's say that your company has separate teams to monitor and manage content for
vRealize Operations, the HOL Role does not need access to any of the content
management permissions.
1. Tick the Administrative Access - all permission box
2. Untick the Content box.
3. Click Update.
HOL-SDC-1610
Page 480
HOL-SDC-1610
Clone a Role
1. Click on the role HOL Role to select it.
2. Click the Clone button.
Role Name
1. Name the cloned role HOL Dev Role.
2. Click OK to complete the clone.
HOL-SDC-1610
Page 481
HOL-SDC-1610
HOL-SDC-1610
Page 482
HOL-SDC-1610
Delete Role
1. Click on the role HOL Dev Role to select it.
2. Click the Delete button.
Confirm Deletion
Click Yes to confirm you want to delete this role.
HOL-SDC-1610
Page 483
HOL-SDC-1610
Role Deleted
We can see that the role named HOL Dev Role has been deleted.
This concludes this lesson on User Access and Authentication Roles.
HOL-SDC-1610
Page 484
HOL-SDC-1610
HOL-SDC-1610
Page 485
HOL-SDC-1610
HOL-SDC-1610
Page 486
HOL-SDC-1610
To further restrict or control which object are accessible to this group we could use a
vRealize Operations Manager container such as a Custom Group or a Custom
Datacenter for instance.
Note: To allow the user account to access all objects in the vCenter Server inventory of
the vRealize Operations Manager instance, click the Allow access to all objects in
the system check box. For example, click the check box to allow a user, such as an
administrator, to access all objects.
Conclusion
Creating unique and granular roles for users in your organization enables better security
for your vSphere infrastructure and vRealize Operations Manager.
This concludes this lesson on User Access and Authentication Roles.
HOL-SDC-1610
Page 487
HOL-SDC-1610
PuTTY to linux-CPU-Load-01a VM
1. Select linux-CPU-Load-01a.
HOL-SDC-1610
Page 488
HOL-SDC-1610
2. Click Load.
3. Click Open.
HOL-SDC-1610
Page 489
HOL-SDC-1610
HOL-SDC-1610
Page 490
HOL-SDC-1610
If you successfully completed the previous task, you should see the Workload score at
99 and CPU Usage at around 3GHz. Take note that there is no CPU limit configured on
that virtual machine.
NOTE: It may take a couple of minutes for the CPU to ramp up. You can click the
Refresh (6) button to see it start to spike.
HOL-SDC-1610
Page 491
HOL-SDC-1610
HOL-SDC-1610
Page 492
HOL-SDC-1610
HOL-SDC-1610
Page 493
HOL-SDC-1610
HOL-SDC-1610
Page 494
HOL-SDC-1610
HOL-SDC-1610
Page 495
HOL-SDC-1610
HOL-SDC-1610
Page 496
HOL-SDC-1610
HOL-SDC-1610
Page 497
HOL-SDC-1610
HOL-SDC-1610
Page 498
HOL-SDC-1610
HOL-SDC-1610
Page 499
HOL-SDC-1610
Back to linux-CPU-Load-01a
Navigate back to linux-CPU-Load-01a virtual machine by typing 'linux-CPU-Load-01a'
in the search box.
Click on the link for linux-CPU-Load-01a.
HOL-SDC-1610
Page 500
HOL-SDC-1610
HOL-SDC-1610
Page 501
HOL-SDC-1610
HOL-SDC-1610
Page 502
HOL-SDC-1610
HOL-SDC-1610
Page 503
HOL-SDC-1610
Resource Settings
From the 'Actions' menu, select 'Edit Resource Settings'.
HOL-SDC-1610
Page 504
HOL-SDC-1610
Conclusion
We demonstrated the capabilities of vRealize Operations to track changes executed in
vCenter Server. We also demonstrated that it was possible to get alerted when a change
was made and that change affected the health of a managed object.
HOL-SDC-1610
Page 505
HOL-SDC-1610
Module 7: Log
Management with
vRealize Log Insight - (60
Minutes)
HOL-SDC-1610
Page 506
HOL-SDC-1610
HOL-SDC-1610
Page 507
HOL-SDC-1610
encryption. 3rd party agents are supported as well, but those benefits listed above
provide unique advantages by using our native agent.
Intelligent Grouping
vRealize Log Insight uses a new machine learning technology. Intelligent Grouping scans
incoming unstructured data and quickly groups messages together by problem type in
order to give you the ability to rapidly understand issues that may span your physical,
virtual, and hybrid cloud environments. The Event Trends tab in the Interactive Analytics
page provides automatic analysis of your events with context around new insights and
anomaly detection. We can now see how events are trending in a specified time interval
and easily detect ones that are potentially affecting the health of your environment or
application.
Aggregation
Fields that are extracted from log data can be used for aggregation. This is similar to the
functionality that GROUP-BY queries provide in a relational database or pivot-tables in
Microsoft Excel. The difference is that there is no need for extract, transform, and load
(ETL) processes and vRealize Log Insight scales to any size of data.
You can generate aggregate views of the data and identify specific events or errors
without having to access multiple systems and applications. For example, while viewing
an important system metric, for example the number of errors per minute, you can drill
down to a specific time-range of events and examine the errors that occurred in the
environment.
Runtime Field Extraction
Raw log data is not always easy to understand, and you might need to process some
data to identify the fields that are important for searching and aggregation. vRealize Log
Insight extracts most fields automatically, and you can dynamically extract a new field
from the data. It is as easy as double-clicking the message text and selecting Extract
Field. The regex is provided automatically based on your selection. The extracted
fields can be used for selection, projection, and aggregation.
Dashboards
You can create dashboards of useful metrics that you want to monitor closely. Any query
can be turned into a dashboard widget and summarized for any range in time. You can
check the performance of your system for the last five minutes, hour, or day. You can
view a breakdown of errors by hour and observe the trends in log events.
Security Considerations
IT decision makers, architects, administrators, and others who must familiarize
themselves with the security components of vRealize Log Insight must read the VMware
vRealize Log Insight Security Guide. For more information, you can visit the vRealize Log
HOL-SDC-1610
Page 508
HOL-SDC-1610
Dashboards Overview
Dashboards Think of the dashboards page as an overview section. Dashboards
provide the ability to quickly visualize log data and determine potential issues within an
environment. Log Insight provides two different types of widgets inside a dashboard:
charts and queries. Charts are a visual representation of data and the most commonly
used widget. Queries are saved pieces of information that provide both a visual and
textual representation of data on the Interactive Analytics page, but they are listed only
by a defined name on the dashboards page. Query widgets are typically used when a
chart widget does not necessarily provide useful information.
Interactive Analytics Allows administrators and engineers to perform searches using
plain language or REGEX strings and view log message detail to determine problem
areas and perform root cause analysis.
HOL-SDC-1610
Page 509
HOL-SDC-1610
HOL-SDC-1610
Page 510
HOL-SDC-1610
Administration Overview
The administration section provides health information as well as allows for the
modification of configuration settings. All information displayed during the initial
HOL-SDC-1610
Page 511
HOL-SDC-1610
configuration wizard of the product can be modified from the administration section.
There are other aspects of the administration section that are not configurable during
the initial configuration wizard such as where cluster members and agents can be
managed.
HOL-SDC-1610
Page 512
HOL-SDC-1610
HOL-SDC-1610
Page 513
HOL-SDC-1610
Keyboard Shortcuts
To aid in typing some of the entries in the lab, we have added a README.txt file on the
ControlCenter desktop to help account for the variations in keyboard layouts. Where
applicable you can also use the README file to copy and paste commands included in
steps.
HOL-SDC-1610
Page 514
HOL-SDC-1610
HOL-SDC-1610
Page 515
HOL-SDC-1610
HOL-SDC-1610
Page 516
HOL-SDC-1610
HOL-SDC-1610
Page 517
HOL-SDC-1610
HOL-SDC-1610
Page 518
HOL-SDC-1610
Test successful
Verify you receive a Test successful message before continuing.
Note: If you do not receive a Test successful, please return to the previous step and
verify your configuration.
1. Click Save
HOL-SDC-1610
Page 519
HOL-SDC-1610
HOL-SDC-1610
Page 520
HOL-SDC-1610
There are currently two major sets of logs, that are forwarded to a remote syslog server
when the new syslog service is configured:
1. All logs from ESXi hosts that are connected to the vCenter Server will be
forwarded
2. A partial set of vCenter Server service logs will be forwarded. The specific service
logs that are forwarded are found in /etc/vmware-syslog/custom-file-location.conf
HOL-SDC-1610
Page 521
HOL-SDC-1610
Navigate to Administration
1. Click Administration to open the admin section of the Web Client
HOL-SDC-1610
Page 522
HOL-SDC-1610
System Configuration
1. Click System Configuration
HOL-SDC-1610
Page 523
HOL-SDC-1610
Services
1. Click Services
HOL-SDC-1610
Page 524
HOL-SDC-1610
HOL-SDC-1610
Page 525
HOL-SDC-1610
HOL-SDC-1610
Page 526
HOL-SDC-1610
Update Values
There are four settings that you will need to configure:
1.
2.
3.
4.
5.
A restart is not required when configuring the syslog service. Logs will automatically be
forwarded to the remote syslog server.
HOL-SDC-1610
Page 527
HOL-SDC-1610
HOL-SDC-1610
Page 528
HOL-SDC-1610
Click
Click
Click
Click
Click
HOL-SDC-1610
Page 529
HOL-SDC-1610
2. Click OK
HOL-SDC-1610
Page 530
HOL-SDC-1610
HOL-SDC-1610
Page 531
HOL-SDC-1610
Confirm Reboot
1. Enter a reason for rebooting: Changed SysConfig
2. Click OK
HOL-SDC-1610
Page 532
HOL-SDC-1610
Verify Restart
It will take a few minutes for the restart to complete. If you click the Web Browser
Refresh, you will either see the above Print Screen or potentially error messages within
the Web Client as the browsers attempts to cache specific screens and the VCSA shuts
down. You do not need to wait for the Unable to connect screen to appear. While the
vCenter is rebooting, continue to the next section.
Section Complete
You are now finished with this section of the module; you may now continue to the next
section.
HOL-SDC-1610
Page 533
HOL-SDC-1610
HOL-SDC-1610
Page 534
HOL-SDC-1610
Open loginsight-02a
First, let's open a new browser tab to navigate to our new Log Insight appliance that has
already been deployed for you. Go to your browser window that you already have
open.
1. Click + icon to open a new tab.
2. Click Log Insight in the bookmark bar
3. Click the loginsight-02a link
HOL-SDC-1610
Page 535
HOL-SDC-1610
HOL-SDC-1610
Page 536
HOL-SDC-1610
HOL-SDC-1610
Page 537
HOL-SDC-1610
HOL-SDC-1610
Page 538
HOL-SDC-1610
HOL-SDC-1610
Page 539
HOL-SDC-1610
Note: You must enter the IP address here and not the FQDN, which is optional.
HOL-SDC-1610
Page 540
HOL-SDC-1610
Cluster Page
The Cluster Page should now appear as the image above. You have now created a
cluster with an internal load balancer.
Note the warning message shown. We have one more step to complete before things
are finalized to make the warning message disappear.
HOL-SDC-1610
Page 541
HOL-SDC-1610
HOL-SDC-1610
Page 542
HOL-SDC-1610
Confirm Update
1. Click OK to complete the configuration change.
HOL-SDC-1610
Page 543
HOL-SDC-1610
HOL-SDC-1610
Page 544
HOL-SDC-1610
Event Forwarding
Any Log Insight instance, whether standalone or clustered, can be configured to forward
events. When forwarding events, the Log Insight instance still ingests and stores events
locally. Archiving is also an option once configured. In addition, queries can be issued
from Log Insight instances configured for event forwarding. Forwarders are also often
used for the following reasons:
To send log data up to 10 destinations, including a Security information and event
management (SIEM) solution.
Compress log data to reduce bandwidth requirements.
Enhance security by minimizing the number of devices which send events to a
primary Log Insight destination.
Forwarders are a complete Log Insight instance, which provides backup for log
events in the event connectivity is lost to the destination
Filtering events before forwarding to a primary Log Insight destination
Important:
There is no way to configure Log Insight to ONLY forward events (i.e. not ingest
and store logs locally)
Events that the Log Insight instance has previously ingested are not forwarded
after event forwarding has been configured.
HOL-SDC-1610
Page 545
HOL-SDC-1610
New Destination
Upon selecting the option to create a new destination you will be prompted to provide
information including:
Name: Destination (meaningful user-friendly name or alias)
Host: The FQDN for the remote destination.
Protocol: How events should be sent to the remote destination
Ingestion API (default) if the remote destination is another Log Insight
instance
Syslog (TCP) if the remote destination is something other than Log Insight
Note: Syslog forwarding over UDP is not supported today.
Tags (optional): Let you add fields with predefined values to events for easier
querying.
One or more fields to pass with the event.
Tags are only available when using Ingestion API.
Filters (optional): What events you would like to forward
By default, all events are sent
Filters only support static fields such as syslog metadata fields or ingestion
API tags
There are also several advanced options, which include:
Port: In case you have a non-standard port requirement
Cache: Disk-based cache in case the remote destination is unavailable (maximum
allowed = 2000)
Note: We recommend always changing this to the maximum allowed (2000)
Workers: Number of worker threads per node (in most cases should not be
changed)
HOL-SDC-1610
Page 546
HOL-SDC-1610
HOL-SDC-1610
Page 547
HOL-SDC-1610
HOL-SDC-1610
Page 548
HOL-SDC-1610
Configuration Complete
1. Click the Web Browser Refresh if no data is presented.
2. You should not see events.
Now that the configuration is complete, let's take a look at the events coming over to
our destination on loginsight-03a.corp.local
Open loginsight-03a
1. Click the + icon to open a new browser tab
2. Click Log Insight on the bookmark bar
3. Click the loginsight-03a link
HOL-SDC-1610
Page 549
HOL-SDC-1610
Log In to loginsight-03a
1. Username: admin
2. Password: VMware1!
3. Click Login
HOL-SDC-1610
Page 550
HOL-SDC-1610
Section Complete
At this point, you have completed a basic configuration of the Event Forwarder.
HOL-SDC-1610
Page 551
HOL-SDC-1610
HOL-SDC-1610
Page 552
HOL-SDC-1610
Login to Loginsight-01a
1. Enter Username: admin
2. Enter Password: VMware1!
3. Click Login
HOL-SDC-1610
Page 553
HOL-SDC-1610
5. This section shows the filters which are available as part of this dashboard. The
filters allow you to quickly focus the dashboard on a specific object/item of
interest.
6. Widgets, the widget in Log Insight are configured to query the consolidated log
database and show specific areas of regular interest. In this case, the widget is
showing a graphical representation of all the vSphere log messages and when
they were generated. Widgets can be arranged in multiple ways and sizes.
HOL-SDC-1610
Page 554
HOL-SDC-1610
HOL-SDC-1610
Page 555
HOL-SDC-1610
HOL-SDC-1610
Page 556
HOL-SDC-1610
Event Types
Event Types are used when troubleshooting to quickly narrow down the resulting set of
log messages into pattern matched clusters. This capability allows you to quickly
eliminate irrelevant log messages.
1. Click the Event Types Tab. This will sort the result set of log messages by Event
type.
2. The Events column will provide the count of messages of the pattern matched
type
3. Click the x to remove this message type from the result set and automatically
creates a filter for that message type (you must hover the mouse over the area
for the "x" to display.
HOL-SDC-1610
Page 557
HOL-SDC-1610
Note: The lab you are taking is a live dynamic environment. What you see will differ
from what is captured in the screenshot. Please choose any event in the window and
proceed to the next step.
Filters
After deleting the Event Type, the log messages are retained. They are only removed
from this query and the system automatically creates a filter or constraint excluding
that specific event type.
Creating a Filter
Now we will create a new filter to only include log messages based on the text api
invocations. This will show the number of api connections to your vCenter server.
HOL-SDC-1610
Page 558
HOL-SDC-1610
1.
2.
3.
4.
5.
NOTE: Now we have narrowed down our results. Prior to adding filters there were over
a dozen different event types.
HOL-SDC-1610
Page 559
HOL-SDC-1610
Field Extraction
Extracted fields provide a powerful way to construct queries in Log Insight. You can also
create your own custom extracted fields.
1. Switch back to the Events tab.
2. Highlight the value next to "API invocations:". In the example above, its listed as 1,
but this number could be different.
3. A pop up window appears, select Extract field.
HOL-SDC-1610
Page 560
HOL-SDC-1610
Fields configuration
A Fields configuration will appear on the right side of your screen. We now need to name
the extracted field, determine who can use the field, then save the field for use in the
future. You will use this extracted field later in this module when we integrate with
vRealize Operations Manager.
1. In the Field Name input box, type vmw_vc_api.
2. Under Available for drop down, you have the option to make this extracted field
available to just yourself or all users. Leave this as Me Only.
3. Click Save.
HOL-SDC-1610
Page 561
HOL-SDC-1610
Grouping Events
Now we want to group these events which add some additional data into our graph.
1. Select over time drop down
2. Place a check next to vmw_vc_auth_source (VMware - vSphere) and
vmw_vc_auth_user (VMware - vSphere)
3. Click Apply
Legend Created
Notice that a legend has been created on the right side of the graph to display the IP
address and the username for who was connecting to the vCenter appliance.
HOL-SDC-1610
Page 562
HOL-SDC-1610
HOL-SDC-1610
Page 563
HOL-SDC-1610
Select My Dashboards
1. Click the drop down arrow for the dashboard list
2. Select My Dashboards
HOL-SDC-1610
Page 564
HOL-SDC-1610
Section Complete
You now know how to use Log Insight to explore the logs of a vSphere environment. You
can leave the browser open for the next section.
HOL-SDC-1610
Page 565
HOL-SDC-1610
HOL-SDC-1610
Page 566
HOL-SDC-1610
HOL-SDC-1610
Page 567
HOL-SDC-1610
HOL-SDC-1610
Page 568
HOL-SDC-1610
HOL-SDC-1610
Page 569
HOL-SDC-1610
HOL-SDC-1610
Page 570
HOL-SDC-1610
HOL-SDC-1610
Page 571
HOL-SDC-1610
File Upload
1. Browse to C:\LabFiles\
2. Click VMware - vR Ops 6.x.vlcp
3. Click Open
HOL-SDC-1610
Page 572
HOL-SDC-1610
Note: Content pack dashboards are read-only. You cannot delete or rename them.
However, you can clone content pack dashboards to your custom dashboard. You can
clone whole dashboards or individual widgets.
Import into My Content
Description - The content is imported as custom content to your user space, and is
visible only to you. You can edit the imported content without having to clone it.
Note: Content pack metadata, such as name, author, icon, and so on, are not displayed
in this mode. Once imported in My Content, the content pack cannot be uninstalled as a
pack. If you want to remove a content pack from My Content, you have to individually
remove each of its elements, such as dashboards, queries, alerts, and fields.
1. Choose Install as content pack.
2. Click Import.
HOL-SDC-1610
Page 573
HOL-SDC-1610
HOL-SDC-1610
Page 574
HOL-SDC-1610
Configuration parameters
Note: If you have a multi-tier deployment, you will need to customize the below config
file for each node.
Here are the parameters that need to be changed:
HOL-SDC-1610
Page 575
HOL-SDC-1610
hostname - This is the IP or FQDN of your Log Insight server. Note that this only
needs to be changed in the [server] section at the top of the file, and not
throughout the entire file. Below, it is set to <YOUR LOGINSIGHT HOSTNAME
HERE>
vmw_vr_ops_clustername - This is the *name* of your vRealize Operations
cluster. This can be anything you like here and can be used to distinguish one
cluster from another if you have multiples. Below, it is <YOUR CLUSTER NAME
HERE>
vmw_vr_ops_clusterrole - This is the role that the node you are installing this
file on fills. The choices are "Master", "Replica", "Data", or "RemoteCollector"
- on a single-node installation, use Master. Below, it is set to Master. This value
can be found on the Administration > Cluster Management page in the
vRealize Operations Manager UI (see above image)
vmw_vr_ops_hostname - This is the hostname of your vRealize Operations
Manager cluster. This hostname can also be found on the Administration >
Cluster Management page in the vRealize Operations Manager UI (see above
image). Below, it is set to <YOUR VROPS HOSTNAME HERE>
vmw_vr_ops_nodename - This is the node name of the node you are installing
this file on. This name can be found on the Administration > Cluster
Management page in the vRealize Operations Manager UI (see above image).
Below, it is set to <YOUR NODE NAME HERE>
HOL-SDC-1610
Page 576
HOL-SDC-1610
Open WinSCP
HOL-SDC-1610
Page 577
HOL-SDC-1610
WinSCP to vrops-01a.corp.local
1. Select vrops-01a.corp.local
2. Click Login
HOL-SDC-1610
Page 578
HOL-SDC-1610
HOL-SDC-1610
Page 579
HOL-SDC-1610
Browse to Directories
The correct directory paths may already appear within WinSCP. If you do not see the
correct paths, please proceed with the steps below. Otherwise, you can move to the
next step.
1. Browse to C:\LabFiles\ (left frame). This can easily be completed by using the
toolbar up-directory navigation and then once at C:\, select the LabFiles folder.
2. Browse to /var/lib/loginsight-agent on vrops-01a.corp.local (right frame). This
can be accomplished by using the up-folder toolbar button to get to root and then
navigate to the loginsight-agent folder.
HOL-SDC-1610
Page 580
HOL-SDC-1610
Overwrite liagent.ini
Overwrite /var/lib/loginsight-agent/liagent.ini with C:\LabFiles\liagent.ini by
dragging liagent.ini from the left frame to the right frame.
1. Click Yes
Close WinSCP
1. Click the X in the upper right corner to close WinSCP
HOL-SDC-1610
Page 581
HOL-SDC-1610
Open Putty
1. From the Task Bar select the Putty shortcut
Log in to vrops-01a.corp.local
1.
2.
3.
4.
HOL-SDC-1610
Page 582
HOL-SDC-1610
HOL-SDC-1610
Page 583
HOL-SDC-1610
4. After navigating to the dashboard, please refresh the view using the Update
button
Conclusion
This concludes installing content packs.
Please proceed to the next section where we will complete works with installing and
managing Log Insight agents.
HOL-SDC-1610
Page 584
HOL-SDC-1610
HOL-SDC-1610
Page 585
HOL-SDC-1610
HOL-SDC-1610
Page 586
HOL-SDC-1610
Agents
Click Download Log Insight Agent Version 3.0.0
HOL-SDC-1610
Page 587
HOL-SDC-1610
Save file
1. Click Save File
HOL-SDC-1610
Page 588
HOL-SDC-1610
HOL-SDC-1610
Page 589
HOL-SDC-1610
HOL-SDC-1610
Page 590
HOL-SDC-1610
HOL-SDC-1610
Page 591
HOL-SDC-1610
HOL-SDC-1610
Page 592
HOL-SDC-1610
HOL-SDC-1610
Page 593
HOL-SDC-1610
HOL-SDC-1610
Page 594
HOL-SDC-1610
HOL-SDC-1610
Page 595
HOL-SDC-1610
HOL-SDC-1610
Page 596
HOL-SDC-1610
HOL-SDC-1610
Page 597
HOL-SDC-1610
Conclusion
This concludes Installing and Managing Log Insight Agents.
HOL-SDC-1610
Page 598
HOL-SDC-1610
After performing the items below to install the management pack and configure the
integration, we will be able to have 2-way launch in context between the two solutions,
as well as alerts integration and inventory unification - to aid in your troubleshooting
workflow.
HOL-SDC-1610
Page 599
HOL-SDC-1610
HOL-SDC-1610
Page 600
HOL-SDC-1610
Add Solution
1. Ensure the Solutions section is highlighted
2. In the right frame, select the green plus icon
HOL-SDC-1610
Page 601
HOL-SDC-1610
HOL-SDC-1610
Page 602
HOL-SDC-1610
HOL-SDC-1610
Page 603
HOL-SDC-1610
HOL-SDC-1610
Page 604
HOL-SDC-1610
1. Click Upload. It will take a minute or so for the upload proces to complete and
the Next button to no longer be greyed out
2. Click the Next button once available
HOL-SDC-1610
Page 605
HOL-SDC-1610
Accept EULA
1. Click the Check Box to accept the terms of this agreement
2. Click Next
HOL-SDC-1610
Page 606
HOL-SDC-1610
Complete Installation
The installation will take a few minutes to complete
1. Click Finish when the installation is complete and the Finish button is no longer
greyed out
HOL-SDC-1610
Page 607
HOL-SDC-1610
Verify Installation
The Management Pack for Log Insight is now installed. There is no further configuration
needed within the vRealize Operations Manager product UI. We will now switch to the
Log Insight product UI to complete the integration.
HOL-SDC-1610
Page 608
HOL-SDC-1610
HOL-SDC-1610
Page 609
HOL-SDC-1610
HOL-SDC-1610
Page 610
HOL-SDC-1610
Registration Successful
1. Once the registration completes, click OK.
Environment
1. Click the Environment icon (looks like earth) in the Navigation pane
HOL-SDC-1610
Page 611
HOL-SDC-1610
HOL-SDC-1610
Page 612
HOL-SDC-1610
esx-01a.corp.local
1. Click the swizzles (small triangle) next to each object for World, vCenter,
Datacenter Site A and Cluster Site A
2. Click esx-01a.corp.local
3. Click the Actions dropdown
4. Select Search for logs in vRealize Log Insight. Selecting this option will
launch vRealize Log Insight in context i.e. only show logs for esx01-a
HOL-SDC-1610
Page 613
HOL-SDC-1610
HOL-SDC-1610
Page 614
HOL-SDC-1610
HOL-SDC-1610
Page 615
HOL-SDC-1610
HOL-SDC-1610
Page 616
HOL-SDC-1610
Interactive Analytics
Launch in context can be useful when you are troubleshooting an object in vRealize
Operations and you need to quickly check the relevant logs for that object.
1.
2.
3.
4.
HOL-SDC-1610
Page 617
HOL-SDC-1610
2.
3.
4.
5.
6.
Select the drop down with the word text and type vmw_vc_api_invocations
Select the drop down with the "=" sign and select the ">" sign
Type in the value "1" in the last input box
Click the query magnifying glass
Notice only log events with greater than 1 API invocation appear in the list
HOL-SDC-1610
Page 618
HOL-SDC-1610
New Alert
Fill out the Alert:
1.
2.
3.
4.
HOL-SDC-1610
Page 619
HOL-SDC-1610
Note: The resource option is used as the default object in vRealize Operations Manager
that will receive the LI alert assuming inventory mapping returns no information for an
event triggered by the Log Insight alert (e.g. non-vSphere events). If the event does
have inventory mapping information, then the Log Insight alert will automatically get
mapped to the correct object in vRealize Operations Manager regardless of what the
resource parameter is set to in Log Insight.
HOL-SDC-1610
Page 620
HOL-SDC-1610
Finalize Alert
Type a note to remind the team why we created this alert. You can type whatever you
want.
1. The notes field provides the ability to add information to the notification.
Information could, for example, include resolution steps or a kb article link.
2. Click Save
Alert integration is configured with the query information that was used previously.
Note: Log Insight alerts are sent to vRealize Operations Manager as notification events.
Notification events in vRealize Operations Manager are accessible from a variety of
locations including:
Summary - Top Alerts under the Health badge
Alerts - A dedicated section for alerts as well as an alerts section per object
Object - Shows Log Insight alerts in Troubleshooting > Events
HOL-SDC-1610
Page 621
HOL-SDC-1610
HOL-SDC-1610
Page 622
HOL-SDC-1610
Conclusion
Due to the dynamic nature of the lab environment, an alert may not be
available in vRealize Operations. For this exercise we will treat the alert as
configured and display an example.
HOL-SDC-1610
Page 623
HOL-SDC-1610
Conclusion
Thank you for completing the vRealize Log Insight Module! For additional Log Insight
content check out HOL-SDC-1635 (vRealize Log Insight) and HOL-SDC-1601(Cloud
Management with vRealize Suite Standard).
HOL-SDC-1610
Page 624
HOL-SDC-1610
HOL-SDC-1610
Page 625
HOL-SDC-1610
Module overview
This module will introduce you to VMware vSphere PowerCLI. Novice users will easily
learn to use the tool and more advanced users will get familiar with the new
functionality available in the latest releases of the product like configuring an OVA
before deploying it and filtering objects by their tags. Both new and experienced users
are sure to learn something new.
HOL-SDC-1610
Page 626
HOL-SDC-1610
Starting PowerCLI
After installation, PowerCLI can be started by double clicking the desktop icon labeled
"VMware vSphere PowerCLI". This will open the PowerShell console and load all PowerCLI
modules.
HOL-SDC-1610
Page 627
HOL-SDC-1610
HOL-SDC-1610
Page 628
HOL-SDC-1610
HOL-SDC-1610
Page 629
HOL-SDC-1610
This will list all PowerCLI commands. As the list is quite large, you may want to narrow it
down to something more specific, for example all commands for managing VMs:
Get-VICommand *VM
Hint: You can use autocomplete for faster typing - just start typing the beginning of the
command/parameter and press "Tab".
Connecting to vSphere
The first thing we need to do in order to manage our vCenter Server is to connect to it.
This is done by using the Connect-VIServer command. Our vCenter is named "vcsa-01a"
and here's how to connect to it:
Connect-VIServer vcsa-01a -User corp\administrator -Password VMware1!
The command will connect to the vCenter with the specified user's credentials.
Getting Help
If you are unsure how to use a specific cmdlet, you can easily view its help by typing
Get-Help (or for short - just "help") and the name of the cmdlet:
help Connect-VIServer
If you want to see the full help with example usages of the cmdlet and parameter
descriptions you should open the full help of the cmdlet:
help Connect-VIServer -Full
If you want to see only the examples, you can use -examples switch like this:
HOL-SDC-1610
Page 630
HOL-SDC-1610
You can also search for a specific word in the entire help archive. Let's try searching for
a cmdlet that vmotions VMs:
help vmotion
The result contains the cmdlet we need - Move-VM. We'll use it later in this module.
Feel free to check the help of any cmdlet we demonstrate in this lab.
HOL-SDC-1610
Page 631
HOL-SDC-1610
HOL-SDC-1610
Page 632
HOL-SDC-1610
Retrieving VMs
One of the most common things to do is list the VMs in your vCenter Server. This is
useful for browsing the inventory and reporting as well as for further processing of
specific VMs (e.g. batch modification of VMs). You can retrieve all VMs with:
Get-VM
You can also retrieve one or more VMs by name. Try out the following:
Get-VM linux-CPU-Load-01a
Get-VM linux*
HOL-SDC-1610
Page 633
HOL-SDC-1610
HOL-SDC-1610
Page 634
HOL-SDC-1610
Hint: $_ is a reserved powershell variable that holds the current object from the pipeline
HOL-SDC-1610
Page 635
HOL-SDC-1610
HOL-SDC-1610
Page 636
HOL-SDC-1610
Exporting to txt
Let's start with the most basic export - to txt file. To export your report to txt use OutFile PowerShell cmdlet:
Get-VM | Select Name, NumCPU, MemoryMB, PowerState, VMHost | Out-File c:\myPowerCLIReport.txt
Exporting to csv
Now let's export the same data to csv format. We'll use Export-Csv cmdlet to do that:
Get-VM | Select Name, NumCPU, MemoryMB, PowerState, VMHost | Export-Csv
c:\myPowerCLIReport.csv -NoTypeInformation
HOL-SDC-1610
Page 637
HOL-SDC-1610
HOL-SDC-1610
Page 638
HOL-SDC-1610
Exporting to xml
The next format that you'll export to is XML. The PowerShell cmdlet we'll use is
ConvertTo-Xml. Since this cmdlet returns XMLDocument object we need to call its Save
method to write formatted data to file:
(Get-VM | Select Name, NumCPU, MemoryMB, PowerState, VMHost | ConvertTo-Xml
-NoTypeInformation).Save("c:\myPowerCLIReport.xml")
Exporting to HTML
You can also export the data in HTML format by using ConvertTo-Html cmdlet. Since this
command just formats the data in HTML you also need Set-Content cmdlet to write
formatted data to file:
HOL-SDC-1610
Page 639
HOL-SDC-1610
If you open the report, now you'll see that it looks much better
HOL-SDC-1610
Page 640
HOL-SDC-1610
HOL-SDC-1610
Page 641
HOL-SDC-1610
Creating a cluster
To create a new cluster we'll use the New-Cluster cmdlet. We have to specify the name
and the location of the new cluster:
$cluster1 = New-Cluster -Name "Nephosoft Cluster 1" -Location "Datacenter Site A"
Now inspect the content of the $evcModes variable. Just type the name of the variable
($evcModes) and its value will be printed to the screen. You'll notice that both hosts
have the same evc mode.
Note: The EVC mode might be different from the one on the screenshot above, because
it depends on the physical hardware that your lab environment runs on.
Let's set that EVC mode to the cluster to make sure that any other hosts that might be
added to the cluster in the future will have to match this EVC mode:
Set-Cluster $cluster1 -EVCMode $evcModes[0].MaxEVCMode
HOL-SDC-1610
Page 642
HOL-SDC-1610
Hint: Prompting for confirmation is good for interactive usage, however it is undesired in
scripts since it will halt them. You can automatically confirm the operation by appending
"-Confirm:$false" parameter to your cmdlet call.
HOL-SDC-1610
Page 643
HOL-SDC-1610
HOL-SDC-1610
Page 644
HOL-SDC-1610
HOL-SDC-1610
Page 645
HOL-SDC-1610
Next we'll use the Move-Host cmdlet to move the hosts to the cluster:
Get-VMHost | Move-VMHost -Destination $cluster1
And at the end let's take the hosts out of maintenance mode:
Get-VMHost | Set-VMHost -State Connected
HOL-SDC-1610
Page 646
HOL-SDC-1610
You can verify ESX hosts are successfully added in the distributed switch:
Get-VMHost -DistributedSwitch $vds
HOL-SDC-1610
Page 647
HOL-SDC-1610
esx-01a.corp.local, esx-02a.corp.local
Then we'll migrate the networking for each one of them by using PowerShell's foreach
loop. For each host we'll first retrieve its physical nics and then its management,
storage, and vMotion VMKernel nics. Then we'll migrate them together by using the AddVDSwitchPhysicalNetworkAdapter cmdlet, while specifying the distributed portgroups for
each VMKernel nic with the VirtualNicPortGroup parameter:
HOL-SDC-1610
Page 648
HOL-SDC-1610
Next we'll migrate these network adapters to the "VM" portgroup that we created in the
previous step:
Set-NetworkAdapter -NetworkAdapter $vmNetworkAdapters -Portgroup $pgVM -Confirm:$false
Now the network traffic of all the VMs is going through the VDSwitch.
HOL-SDC-1610
Page 649
HOL-SDC-1610
Note: If this is not the first module you're doing in this session, there is a chance that
you may have some disconnected datastores in your environment. In this case you'll
receive an error that Move-VM is unable to access the virtual machine configuration. If
this happens you'll have to reconnect the NFS datastore on one of your hosts. To do so
we'll use Get-EsxCli cmdlet:
Retrieve EsxCLli for esx-02a.corp.local:
HOL-SDC-1610
Page 650
HOL-SDC-1610
...
Accessible
: false
...
HOL-SDC-1610
Page 651
HOL-SDC-1610
HOL-SDC-1610
Page 652
HOL-SDC-1610
Inspect the content of the $spec variable. You'll find out that it contains an array of
objects (one object for each VM) and each one of these objects has a corresponding
property for name, memory size, disk size, department and type.
HOL-SDC-1610
Page 653
HOL-SDC-1610
HOL-SDC-1610
Page 654
HOL-SDC-1610
HOL-SDC-1610
Page 655
HOL-SDC-1610
HOL-SDC-1610
Page 656
HOL-SDC-1610
HOL-SDC-1610
Page 657
HOL-SDC-1610
HOL-SDC-1610
Page 658
HOL-SDC-1610
Note: We cannot use "Get-VM -Tag sales, user", because that will return all the VMs are
either from the sales department, or user VMs and what we actually want is to get the
VMs that are both from the sales department and are user VMs
Now let's select all VMs that have both tags assigned. For that purpose we'll use
Compare-Object Powershell cmdlet:
$salesUserVMs = Compare-Object $salesVMs $userVMs -IncludeEqual -ExcludeDifferent -PassThru
Before we can update the VMs memory we need to make sure that they are all stopped:
$salesUserVMs | where {$_.PowerState -eq "PoweredOn"} | Stop-VM -Confirm:$false
Finally we'll update the VM's memory capacity with the Set-VM cmdlet:
Set-VM $salesUserVMs -MemoryGB 1 -Confirm:$false
HOL-SDC-1610
Page 659
HOL-SDC-1610
Take a look at the object inside the $linuxMicroConfig variable. It contains one property,
which points to the source ovf file and second, which is the actual configurable property
for the selected ovf file - NetworkMapping. When we take a look inside the
NetworkMapping object we'll see that it contains single property VM_Network, which is
the only configuration that can be applied to that ovf tempalte.
HOL-SDC-1610
Page 660
HOL-SDC-1610
As you can see, the vApp has been deployed with the correct network mapping.
HOL-SDC-1610
Page 661
HOL-SDC-1610
Further Reading
This lesson is for information purpose only and lists some of the more advanced features
of PowerCLI, useful reading materials for both novice and advanced users as well as
information for other PowerCLI related labs. Feel free to experiment with these if you
like.
HOL-SDC-1610
Page 662
HOL-SDC-1610
https://labs.vmware.com/flings/onyx-for-the-web-client
HOL-SDC-1610
Page 663
HOL-SDC-1610
Conclusion
Thank you for participating in the VMware Hands-on Labs. Be sure to visit
http://hol.vmware.com/ to continue your lab experience online.
Lab SKU: HOL-SDC-1610
Version: 20160804-125633
HOL-SDC-1610
Page 664