Table of Contents - VMwaredocs.hol.vmware.com/HOL-2017/hol-1710-sdc-6_pdf_en.pdf · vCenter Server Appliance (VSCA) The next release of vCenter introduces a native option to protect

Table of ContentsLab Overview - HOL-1710-SDC-6 - What's New: vSphere with Operations Management ..2

Lab Guidance .......................................................................................................... 3Module 1 - What's New in vSphere (90 minutes) .............................................................. 9

vCenter Server Appliance (VSCA) ......................................................................... 10vCenter Appliance Management ........................................................................... 11Getting Started with Update Manager .................................................................. 18Content Library ..................................................................................................... 20Storage IO Control (SIOC) Introduction ................................................................. 47HTML5 Host Client................................................................................................. 67Encrypt VMs .......................................................................................................... 76

HOL-1710-SDC-6

Page 1HOL-1710-SDC-6

Lab Overview -HOL-1710-SDC-6 - What's

New: vSphere withOperations Management

HOL-1710-SDC-6


Lab GuidanceThis lab will introduce you to the new features in vSphere with Operations Management.This lab will walk you through step-by-step, so basic vSOM experience is not necessary,

but it is helpful. If you would like to learn the basics, VMware recommends also takingour lab titled "HOL-SDC-1710 - 1 " - Intro to vSphere with Operations Management - TheBasics."

This Hands-On Lab uses a beta version of vCenter, vSphere and ESXi, which is stillundergoing development before final release. Product features that are included in thislab are subject to change and there is no commitment from VMware to deliver them inany generally available product.

The lab contains one Module:

Module 1 - What's New in vSphere(90 minutes - Basic)

The latest version of vSphere includes many enhancements to mature features such asvMotion while also including several new features that continue to make vSphere standapart from the competition. This module will describe these improvements and howthey'll deliver value to VMware customers.

Lab Captains:

• Kevin Steil, Sr. Technical Account Manager (Modules 1,2,3,4 & 5)

This lab manual can be downloaded from the Hands-on Labs Document site found here:

http://docs.hol.vmware.com

This lab may be available in other languages. To set your language preference and havea localized manual deployed with your lab, you may utilize this document to help guideyou through the process:

http://docs.hol.vmware.com/announcements/nee-default-language.pdf

Disclaimer

This session may contain product features that are currently underdevelopment.

This session/overview of the new technology represents no commitment fromVMware to deliver these features in any generally available product.

Features are subject to change, and must not be included in contracts,purchase orders, or sales agreements of any kind.

HOL-1710-SDC-6


http://docs.hol.vmware.com

http://docs.hol.vmware.com/announcements/nee-default-language.pdf

Technical feasibility and market demand will effect final delivery.

Pricing and packaging for any new technologies or features discussed orpresented have not been determined.

• “These features are representative of feature areas under development. Featurecommitments are subject to change, and must not be included in contracts,purchase orders, or sales agreements of any kind. Technical feasibility and marketdemand will affect final delivery.”

Learn More - External Labs

Because you're one of the first people in the world to experience this new TechnicalPreview version of vSphere with Operations Management, we hope you'll understandthat some things just weren't yet ready to show! Be sure to check back, as this lab will

be updated when the new version is more complete.

In the meantime, if you're interested in getting an introduction to the current vSpherewith Operations Management, please check out HOL-SDC-1610: Virtualization 101:vSphere with Operations Management 6.

Or, if you'd prefer to see how the current vSphere with Operations Management canhelp you accomplish more advanced goals inside your datacenter and beyond, pleasebe sure to check out HOL-SDC-1602: vSphere with Operations Management 6:Advanced Topics.

HOL-1710-SDC-6


Location of the Main Console

1. The area in the RED box contains the Main Console. The Lab Manual is on the tabto the Right of the Main Console.

2. A particular lab may have additional consoles found on separate tabs in the upperleft. You will be directed to open another specific console if needed.

3. Your lab starts with 90 minutes on the timer. The lab can not be saved. All yourwork must be done during the lab session. But you can click the EXTEND toincrease your time. If you are at a VMware event, you can extend your lab timetwice, for up to 30 minutes. Each click gives you an additional 15 minutes.Outside of VMware events, you can extend your lab time up to 9 hours and 30

minutes. Each click gives you an additional hour.

Alternate Methods of Keyboard Data Entry

During this module, you will input text into the Main Console. Besides directly typing itin, there are two very helpful methods of entering data which make it easier to entercomplex data.

HOL-1710-SDC-6


Click and Drag Lab Manual Content Into Console ActiveWindow

You can also click and drag text and Command Line Interface (CLI) commands directlyfrom the Lab Manual into the active window in the Main Console.

Accessing the Online International Keyboard

You can also use the Online International Keyboard found in the Main Console.

1. Click on the Keyboard Icon found on the Windows Quick Launch Task Bar.

<div class="player-unavailable"><h1 class="message">An error occurred.</h1><div class="submessage"><ahref="http://www.youtube.com/watch?v=xS07n6GzGuo" target="_blank">Try watching this video on www.youtube.com</a>, or enableJavaScript if it is disabled in your browser.</div></div>

HOL-1710-SDC-6


Click once in active console window

In this example, you will use the Online Keyboard to enter the "@" sign used in emailaddresses. The "@" sign is Shift-2 on US keyboard layouts.

1. Click once in the active console window.2. Click on the Shift key.

Click on the @ key

1. Click on the "@" key.

Notice the @ sign entered in the active console window.

Activation Prompt or Watermark

When you first start your lab, you may notice a watermark on the desktop indicatingthat Windows is not activated.

HOL-1710-SDC-6


One of the major benefits of virtualization is that virtual machines can be moved andrun on any platform. The Hands-on Labs utilizes this benefit and we are able to run thelabs out of multiple datacenters. However, these datacenters may not have identicalprocessors, which triggers a Microsoft activation check through the Internet.

Rest assured, VMware and the Hands-on Labs are in full compliance with Microsoftlicensing requirements. The lab that you are using is a self-contained pod and does nothave full access to the Internet, which is required for Windows to verify the activation.Without full access to the Internet, this automated process fails and you see this

watermark.

This cosmetic issue has no effect on your lab.

Look at the lower right portion of the screen

Please check to see that your lab is finished all the startup routines and is ready for youto start. If you see anything other than "Ready", please wait a few minutes. If after 5minutes you lab has not changed to "Ready", please ask for assistance.

HOL-1710-SDC-6


Module 1 - What's New invSphere (90 minutes)

HOL-1710-SDC-6


vCenter Server Appliance (VSCA)The next release of vCenter introduces a native option to protect a vCenter deploymentfrom failures in hardware, hosts and vCenter Appliance services.

vCenter High Availability

The high availability setup involves deploying a vCenter passive node and a Witnessnode in addition to the vCenter active node that you are trying to protect. The threenodes form the vCenter HA cluster.

Hands On Labs Interactive Simulation: vCenter HighAvailability

This demo will walk you through the configuration of vCenter High Availability

HOL-1710-SDC-6


http://docs.hol.vmware.com/hol-isim/HOL-2017/hol-1710-vcenterha.htm

vCenter Appliance ManagementThe vCenter Server Appliance Management UI (formerly known as VAMI) serves as acontrol point to monitor and manage vCenter at the appliance level, even when thevSphere web client interface is down. In addition to configuring and editing network andtime settings, checking for appliance updates automatically, and edit login credentials,you will be able to monitor resource utilization, monitor the vCenter database by datatype, and be alerted when certain thresholds of database capacity are reached.

The Appliance Management UI is entirely in HTML, with no dependencies on Flashplugins.

In this lesson, you will accomplish two tasks:

• Monitor the health, resource utilization, and database usage of the vCenterServer Appliance

• Edit settings of the vCenter Server Appliance

HOL-1710-SDC-6


Launch Google Chrome

If Google Chromeis not already running, double click the Google Chromeicon on theMain Console Desktop or single click the icon on the Quick Launch bar.

HOL-1710-SDC-6


Log into vCenter Appliance Management Console

1. Click on the "vcsa-01a Mgmt" Bookmark in HOL Admin folder.2. Type root in the User name field.3. Type VMware1! in the password field.4. Click the "Login" button.

HOL-1710-SDC-6


Monitor the health, resource utilization, and databaseusage of the vCenter Server Appliance

Once you are logged in, you will see the Summary page of the Appliance ManagementUI. The summary page shows basic health information of the appliance, as well as theabilities to back up the appliance (see the Backup and Restore lab), create a supportbundle, and perform power operations such as rebooting and shutting down theappliance.

The health badges in the appliance are based on capacity reached in CPU, Memory, andDatabase. The overall health badge will also change to yellow or orange if an applianceupdate is available, depending on the severity of the update.

HOL-1710-SDC-6


CPU and Memory

1. Click on the "CPU and Memory" tab in the navigation pane on the left. You canmonitor appliance CPU and Memory utilization trends as far back as one quarter,which can be used to troubleshoot the appliance and vCenter Server resourceusage.

2. Mouse over the CPU and Memory charts to see the usage (%) at a given date andtime.

Note: Graph may be different depending on utilization

HOL-1710-SDC-6


Database

1. Click on the "Database" tab in the navigation pane.2. The Appliance Management UI provides a dashboard for the vCenter Server

Appliance’s embedded Postgres database usage by data type, as well as spaceutilization trending with options to see any or all of the largest data types(Statistics, Events, Alarms and Tasks is know as SEAT data). You will also bealerted in the vSphere web client when certain capacity thresholds are reached.

3. Mouse over the current space utilization trending line graphs to see thebreakdown of % utilization of the vCenter Postgres database by each data type.


HOL-1710-SDC-6


Networking

1. Click on the "Networking" section in the left navigation pane.2. Select the Monitor tab to see network utilization.3. You can adjust the duration to 1 day, 1 week, 1 month or 1 quater.


HOL-1710-SDC-6


Getting Started with Update ManagervSphere Update Manager Integration

The next release of vSphere Update Manager is integrated with the vCenter ServerAppliance and is delivered as an optional service. Starting in the next version ofvSphere, you can no longer connect a vSphere Update Manager instance that isinstalled on a Windows Server machine with the vCenter Server Appliance. Attempts toconnect vSphere Update Manager during installation on a Windows operating system toa vCenter Server Appliance fail with an error.

To use the vSphere Update Manager server in the vCenter Server Appliance, start theVMware vSphere Update Manager Extension service. vSphere Update Manager deployedwith the vCenter Server Appliance uses a PostgreSQL database. While vSphere UpdateManager and the vCenter Server Appliance share the same PostgreSQL databaseinstance, they use separate PostgreSQL databases which run on the vCenter ServerAppliance. In case you need to reset the vSphere Update Manager database, thevCenter Server Appliance database remains intact.

vSphere Update Manager enables centralized, automated patch and versionmanagement for VMware vSphere and offers support for VMware ESXi hosts, virtualmachines, and virtual appliances.

With vSphere Update Manager, you can perform the following tasks:

• Upgrade and Patch ESXi hosts.• Install and update third-party software on hosts.• Upgrade virtual machine hardware, VMware Tools, and Virtual Appliances.

vSphere Update Manager Web Client

• View scan results and compliance states for vSphere Inventory

HOL-1710-SDC-6


Video: Upgrading VMware Tools Using vSphere UpdateManager (5:14)

vSphere Update Manager can also be used to update the VMware tools on a virtualmachine. The video outlines the process.

<div class="player-unavailable"><h1 class="message">An error occurred.</h1><div class="submessage"><ahref="http://www.youtube.com/watch?v=HLZvcjH95mE" target="_blank">Try watching this video on www.youtube.com</a>, or enableJavaScript if it is disabled in your browser.</div></div>

HOL-1710-SDC-6


Content LibraryContent Library is a feature that was introduced with vSphere 6 and has been enhancedin the next version of vSphere. The Content Library provides a simple and effective wayof managing content, such as VM templates, vApps, ISO images, and scripts.Enhancements to Content Library including ISO mount to a VM directly from ContentLibrary, VM Guest OS customization, simplified library item update capabilities andoptimizations in streaming content between vCenter Servers.

Enhancements to Content Library in the next vSphere are planned to include:

• Mount an ISO to a VM directly from Content Library• VM Guest OS customization• Simplified library item update capabilities• Optimizations in streaming content between vCenter Server

In this lesson, you will complete the following goals:

• Deploy a VM with customized Guest OS via Content Library• Sync your content quickly between vCenter Servers over HTTP

HOL-1710-SDC-6




Deploy a VM with customized Guest OS via Content Library

You will use a VM template from a Content Library to deploy a virtual machine and do aGuest OS customization in the same wizard.

HOL-1710-SDC-6


Log into vCenter

Login in to RegionA vCenter

1. Click on "RegionA vCenter" in the bookmarks toolbar.2. Type [email protected] in the User name field.3. Type VMware1! in the Password field.4. Click the "Login" button.

HOL-1710-SDC-6


Navigate to Content Library

1. Click on Home Icon on Top menu bar2. Click on "Content Libraries"

Select Content Library

1. Select the library "ContentLibraryA" in the left navigation pane.2. Select the "Templates" Tab on the content pane.3. Select the row for the "Tiny-VM" template, and try not to click on the "Tiny-VM"

name, this will take you the templates summary page.

HOL-1710-SDC-6


Deploy Virtual Machine

1. Select a "New VM from Library…" action.

New Virtual Machine from Content Library Wizard - Selectname and location

1. Type Tiny-VM in the name field to specific a name for the newly created VM.2. Select "RegionA01" for the datacenter or folder location.3. Check the “Customize the operating system” checkbox at the bottom.4. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New Virtual Machine from Content Library Wizard - Selecta resource

1. Click “Create a new specification” icon at the top for a new specification.

Note: This spawns the Guest Customization Wizard. Your other wizard is still running.

HOL-1710-SDC-6


New VM Guest Customization Spec Wizard - SpecifyProperties

1. Type New Spec in the Name Customization Specification field and overwrite anyexisting text. The description field is option.

2. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New VM Guest Customization Spec Wizard - Set ComputerName

1. Select the "Use the virtual machine name" radio button for Computer Name.2. Type corp.local in the Domain Name field.3. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New VM Guest Customization Spec Wizard - Time Zone

1. Select "US" from the Area drop-down box. Once you click the drop-down arrow,you can type US to quickly location "US".

2. Select "Pacific" for Location. The default for "Hardware Clock Set To" shouldremain as UTC.


HOL-1710-SDC-6


New VM Guest Customization Spec Wizard - ConfigureNetwork

1. Confirm the "Use Standard network settings...." radio button is selected.2. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New VM Guest Customization Spec Wizard - Enter DNS andDomain Settings

1. Type 192.168.110.10 in the Primary DNS field. The Secondary and Tertiary DNSfields can remain blank.

2. Type corp.local in the DNS Search Path field.3. Click Add Button to add corp.local to the DNS Search Path, which will move

"corp.local" to the box below.4. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New VM Guest Customization Spec Wizard - Ready tocomplete

1. Review the wizard settings.2. Click the "Finish" to save the changes.

Note: This will complete the "New VM Guest Customization Spec" Wizard and returnyou to the "New Virtual Machine from Content Library" wizard.

HOL-1710-SDC-6


New Virtual Machine from Content Library Wizard -Customize Guest OS - Continued..

1. Select "New Spec", which is the newly created Custom Guest OS Specification.2. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New Virtual Machine from Content Library Wizard - Selecta resources

1. Select the "RegionA01-COMP01" cluster as the target location.2. Click the "Next" button to advance to the next option.

Note: This may take a few seconds to complete.

HOL-1710-SDC-6


New Virtual Machine from Content Library Wizard - Reviewdetails

1. Review Details2. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New Virtual Machine from Content Library Wizard - Selectstorage

1. Select "Thin Provisioned" from the "Select virtual disk format" drop-down. Due tolab storage constraints, we do not want either "Thick provision" option.


HOL-1710-SDC-6


New Virtual Machine from Content Library Wizard - Selectnetworks

1. Leave "VM-RegionA01-vDS-COMP" as the default Destination Network.2. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New Virtual Machine from Content Library Wizard - Selectnetworks


Note: This completes the "New Virtual Machine from Content Library" wizard.

HOL-1710-SDC-6


Check Status of Deployment

1. Locate and click on "Recent Tasks" in the content pane to check status ofdeployment.

2. Once Completed you will see an error. This is expected behavior because wecan't add Linux Machines to the domain.

Note: You have now deployed a VM from a Template in the Content Library.

Check new VM

1. Click on "Home" button at the top of the vSphere Web client.2. Select "VMs and Templates” from the drop-down menu.

Check New VM - Continued...

1. Select "vcsa-01a.corp.local" in left navigation pane.2. Select the VMs tab in the content pane.3. Confirm "Virtual Machines" is selected in the sub-menu.4. You should see "Tiny-VM" in the list of VMs.

HOL-1710-SDC-6


Note: This concludes the lesson on deploying a VM from the content library. Next we willsynchronize content.

Sync your content quickly between vCenter Servers overHTTP

During this task, you will distribute the content between two vCenter Servers over HTTPby using Publish-Subscribe functionality of Content Libraries. First, you will do so byusing a regular workflow. Second time, you will use an optimization that was createdspecifically to provide a better data streaming over HTTP. Finally, you will compare tworuntimes of the data streaming to see the performance gain.

This optimization option comes with limitations:

• Once a library is published as optimized for syncing over HTTP (streamingoptimized), you cannot revert it back (unpublish) to a local library

• A streaming optimized published library cannot be used to deploy VMs.

HOL-1710-SDC-6


Navigating to the Content Libraries

1. Select the "Home" icon from the top of the screen.2. Select the "Home" icon in the drop-down.

Navigating to the Content Libraries - continued...

You should still be logged into vCenter.

1. Click the "Content Libraries" icon in the content pane.

HOL-1710-SDC-6


Edit the ContentLibrary settings

1. Right-click on "ContentLibraryA" from the left Navigation pane.2. Click "Edit Settings..." from the drop-down menu.

Regular content library sync over HTTP

1. Click on "Copy Link" to place the URL for the Subscription URL in the clipboard.2. Confirm that the "Authentication" checkbox is unchecked.3. Click the "OK" button to save the changes.

HOL-1710-SDC-6


Navigating to Create new content library wizard

1. Select "Content Libraries" in left Navigation pane, at Top. Your screen shouldmatch this one

2. Click the "Create new content Library"link.

New Content Library wizard - Name and location

1. Type ContentLibrarySub in the Name field. The Notes field can remain blank.2. Select "vcsa-01b.corp.local" from the vCenter Server drop-down.3. Click the "Next" button to advance to the next option.

New Content Library wizard - Configure content library

1. Select the "Subscribed content library” radio button.

HOL-1710-SDC-6


2. Press the "Control" and "V" keys together while hovering your mouse over theSubscription URL field.

3. Select the ”Download all library content immediately” radio button.4. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New Content Library wizard - Add storage

1. Select the "Select a datastore" radio button.2. Select the "RegionB01-ISCSI01-COMP01" radio button.3. Click the "Next" button to advance to the next option.

HOL-1710-SDC-6


New Content Library wizard - Ready to complete


Note: This completes the "New Content Library" wizard.

Create Content Library for vCenter B

1. Select "ContentLibrarySub" in the left navigation pane.2. You should now see the summary for "ContentLibrarySub" and notice

"Subscribed" in the "Type" column.

HOL-1710-SDC-6


Conclusion

This concludes this lesson. In this lesson you learned how to deploy a VM withcustomized Guest OS setting via Content Library and Synchronize your content quicklybetween vCenter Servers over HTTP. We will now end this module:

1. Click on the down arrow beside the logged in user name.2. Select "Logout" from the drop-down menu.

HOL-1710-SDC-6


Storage IO Control (SIOC) IntroductionThis module will cover some new policy based management integration with Storage IOControl. Through this integration you can define IO limits, reservations, and shares aspart of your storage policies and apply them to your virtual machines.

In this lesson you will go through some of the key screens for these new functionalitiesand become familiar with these new capabilities.

You will create three storage policies and then configure a VM to use a policy.

HOL-1710-SDC-6




Log into vCenter

Log into RegionA vCenter

1. Click on "RegionA vCenter" in the bookmark toolbar.2. Type [email protected] in the User name field.

HOL-1710-SDC-6


3. Type VMware1! in the Password field.4. Click the "Login" button.

HOL-1710-SDC-6


Navigate VM Storage Policies

1. Click on Home Icon2. Click on "Policies and Profiles"


1. Click on "VM Storage Policies" on the top of the left navigation panel

2. Click on Create VM Storage Policy icon on the top of the middle navigation panel

HOL-1710-SDC-6


Create Storage IO Control Policies

In this task you will create a storage policy for Storage IO Control. You will be creatingthree storage policies named:

• Preferred IO• Standard IO• Restricted IO

1. Select vcsa-01a.corp.local in the vCenter Server drop down box.

HOL-1710-SDC-6



1. Enter a name of " Preferred IO" and a description of your choosing2. Click Next.

HOL-1710-SDC-6



1. Click Next

HOL-1710-SDC-6



1. Click check box for 'Use common rules in the VM storage policy'2. In the common rules section click on the "Add Component" button and hover over

the "Storage I/O Control" component from the IO Control category and select"High IO shares allocation"

3. Then Click Next

HOL-1710-SDC-6



1. Uncheck the box for 'Use rule-sets in the storage policy'2. Click Next

HOL-1710-SDC-6


Storage compatibility

1. Click Next

Click Finish on the Ready to Complete Page

HOL-1710-SDC-6


Create Standard IO and Restricted IO

1. Repeat steps 2-7 to create a new policy "Standard IO" with the "Normal IO sharesallocation" component

2. Repeat steps 2-7 to create a new policy "Restricted IO" with the "Low IO sharesallocation" component

3. Verify that you have created the three policies

HOL-1710-SDC-6


Provision a Virtual Machine with "Standard IO" Policy

Use the policies that were created:

1. Click on the Home Icon on top of Page2. Click on "VMs and Templates"

HOL-1710-SDC-6


Provision a Virtual Machine with "Standard IO" Policy

We will now deploy a VM from the Template Library using the Standard IO Policy

1. Expand navigation tree under "vcsa-01a.corp.local" by clicking triangle on theleft.

2. Right Click on "RegionA01"3. Click on "New Virtual Machine"4. Click on "New VM from Library"

This will bring up a window to select a Template from vCenters Content Library

HOL-1710-SDC-6


Select a Template to deploy

1. Select "Tiny-VM"

2. Click Next

HOL-1710-SDC-6


Select Name and Location of VM

1. Name the VM "sioc-001"2. Select the "RegionA01" cluster3. Click Next

HOL-1710-SDC-6


Configure "sioc-001"

1. Select arrow next to"RegionA01-COMP01"2. Select esx-01a.corp.local3. Click Next

HOL-1710-SDC-6


Configure "sioc-001"

1. Click Next

HOL-1710-SDC-6


Select Storage

1. Select virtual disk format: Thin provision2. Select VM storage policy: Standard IO3. Datastores: Leave RegionA01-ISCSI-COMP01 Selected (Only option anyways)4. Click Next

HOL-1710-SDC-6


Select Network

1. Make sure network is "VM-RegionA01-vDS-COMP"2. Click Next

On Summary Screen Click Finish.

HOL-1710-SDC-6


Storage Policies

Storage policies are defined on a disk level. This allows you to define different storagepolicies for each disk a VM has. If the "sioc-001" machine had multiple disks, you couldchoice a different policy for each disk as this screen capture shows.

HOL-1710-SDC-6


HTML5 Host ClientThe HTML5 Host Client is a new product designed to replace the host client functionalityof the original C# Client. The layout of the H5 UI is similar to the vSphere Web Client toremain consistent in workflow navigation while simplified in areas where vCenterfunctionality is not required. In the following tasks, we will go through some of the mainscreens of the new Host Client to have you get acquainted with the new tool.

Connect to ESXi Host

1. Open Google Chrome browser by double clicking on "Google Chrome" icon ondesktop

HOL-1710-SDC-6


Login to ESXi Host

1. Click book mark Folder "HOST-HTML5"2. Click on esx-01a to login to esx-01a3. Login with the following credentials

User name: root

Password: VMware1!

4. Click "Log in"

HOL-1710-SDC-6


Confirmation Page

Click on "Ok"

HOL-1710-SDC-6


Inventory Tree

You will see the basic Host resources displayed in a tree format on the left hand side ofthe UI, listing: Host, Virtual Machines, Storage and Networking.

• Left-Clicking on each resource type will display information regarding eachresource in the main-context menu on the left.

For example, the host resource pane describes information about the CPU type, memoryconfiguration, and basic performance information.

Similarly, left clicking the Virtual Machine resource type will bring up a list of the VMscurrently being hosted on the machine.

HOL-1710-SDC-6


Managing Resource Types

1. Right-click the Host resource type to display a list of actions that can beperformed on the Host

2. Below each resource type are also listed additional functionality. For example, leftclicking on the Manage link below the Host resource will display additionalconfiguration tabs such as Advanced settings, Hardware, Licensing, etc.

TROUBLESHOOTING TASKS

One of the main use cases for the Host Client is in troubleshooting the virtualinfrastructure, particularly when vCenter Server and the vSphere Web Client aretemporarily unavailable to do the remediation. In these situations, the key task is toexamine the host running critical applications, examine associated logs and events, andpotentially act on the host or VM to bring it back online.

HOL-1710-SDC-6


Monitoring Resource Types

Left-clicking on the Monitor link will display information regarding the resource’sperformance, events, tasks, and logs pertaining to the resource type

HOL-1710-SDC-6


Task 1. Reviewing host logs, events and tasks

1. From the left hand navigator, select Host, then select Monitor2. Select the Logs tab to see a list of logs available for viewing.3. Select /var/log/vpxa.log to see messages regarding the vCenter daemon. As a UI

aid, you can right click the vpxa.log and select “Open in new window” to seeadditional rows of the log. This screen can now also be searched by using thebrowser’s search capabilities (ie: Control-F).

4. Similar to Logs, a list of Events and Tasks related to the Host can also bedisplayed. Select Events to see the most recent Events, select the down arrow inthe Events column icon, then select Filter, change the criteria to “contains”, andenter “logged in” to display the most recent login events occurring on the Host.

HOL-1710-SDC-6


Generating the GSS Support Bundle

Often GSS will ask that a support bundle be generated to help troubleshoot SRs. Thesupport bundle includes a snapshot of the current host state, configuration parameters,and relevant logs.

1. Select Host from the left hand navigator2. Select Monitor3. Select the Logs tab4. Select Generate support bundle (Note: it may take several minutes to generate

the large bundled log files)

Generating the GSS Support Bundle

Progress will be displayed in the Recent Tasks screen at the bottom of the UI

HOL-1710-SDC-6


Confirmation of Support Bundle

Once the Support bundle is completed, you will be prompted to either Download or youcan dismiss and download later.

HOL-1710-SDC-6


Encrypt VMsThis module will walk through the following senarios:

• Add a Key Management Server to vCenter Server.• Create an encryption storage policy.• Create an encrypted VM and encrypt existing VM.• Decrypt multiple encrypted VMs simultaneously.

Launch Chrome

1. Open Google Chrome browser by double clicking on "Google Chrome" icon ondesktop

HOL-1710-SDC-6


Login Into vCenter

Login in to RegionA vCenter

1. Click on link in Favorites Bar - RegionA vCenter2. Login: [email protected]. Password: VMware1!4. Click Login

HOL-1710-SDC-6


Key Server Setup

We will add a Key Server to vCenter for RegionA01.

1. Click on the Home Icon2. Click Global Inventory Lists

HOL-1710-SDC-6


Navigate to vCenter List

1. Under resources, click on vCenter Servers

HOL-1710-SDC-6


Select vcsa-01a.corp.local

1. Select vcsa-01a.corp.local in left Navigation Menu2. Then select the Configure tab3. Then select the Key Management Servers section4. Click on the Add Server Icon (has green plus sign)

HOL-1710-SDC-6


Add KM Server

Input the field on the Add KM server screen using this information:

1. Key server cluster: <Create new cluster>2. Cluster Name: Key Server Cluster3. Server Alias: KeyServer4. Server Address: kms-01a.corp.local5. Server Port:56966. Then Click OK

Set default KMS cluster

Select Yes to make this your Default KMS Server

HOL-1710-SDC-6


Trust Certificate

Now we will trust the certificate presented by the KMS Server

1. Click Trust

HOL-1710-SDC-6


KM Server Configured

You should now see a screen that shows your KM Server status is Normal and CertificateStatus is valid. You many need to adjust the column widths or scroll to the right to seeall columns.

Create Encryption Policy

1. Click on the Home Icon on the top of the page2. Click on "Policies and Profiles"

HOL-1710-SDC-6


Select vcsa-01a.corp.local

1. From the vCenter Server drop-down menu, select 'vcsa-01a.corp.local'

Navigate to Storage Policies

1. Click on VM Storage Policies

HOL-1710-SDC-6



1. Click on "VM Storage Policies" on the top of the left navigation panel

2. Click on "Create VM Storage Policy" on the top of the middle navigation panel

HOL-1710-SDC-6


Create new VM Storage Policy

1. Select vcsa-01a.corp.local in the dropdown for vCenter2. Name: My Encryption Policy3. Click Next

HOL-1710-SDC-6


Policy Structure

1. This is just an informational page, click Next

HOL-1710-SDC-6


Common Rules

This screen has multiple steps, so please don't hit Next.

1. Select Check Box Use common rules in the VM storage policy2. Click on Green Plus Sign3. Click on Encryption4. Click Next

HOL-1710-SDC-6


2b Rules-Set1

1. Uncheck Use rules-sets in the storage policy2. Click Next

HOL-1710-SDC-6


Storage compatibility

This is a summary page, showing all storage that is compatible with the policy wecreated.

1. Click Next

HOL-1710-SDC-6


Ready to Complete

1. Click Finish

HOL-1710-SDC-6


Encrypting VMs

Now let's see the encryption policy we just created in use. We will create a VM.

1. Click on the Home Button2. Click on Global Inventory Lists

HOL-1710-SDC-6


Navigate to Create VM

1. Click on Virtual Machines

Create VM

1. Click on Create new VM icon

HOL-1710-SDC-6


Create VM

1. Select Create a new virtual machine from list2. Click Next

HOL-1710-SDC-6


Select a name and folder

1. Name your vm MyEncryptedVM2. Select RegionA01 under location3. Click Next

HOL-1710-SDC-6


Select compute resource

1. Select RegionA01-COMP01 as your compute resource (no other choice)2. Click on Next

Notice the green check under Compatibility

HOL-1710-SDC-6


Select Storage

This is where we select the Encryption policy that was created.

1. In the VM storage policy, drop down the box and select My Encryption Policy2. Select RegionA01-ISCSI01-COMP01 for location3. Click on Next

HOL-1710-SDC-6


Select compatibility

1. Leave selection at ESXi 6.5 and later2. Click Next

HOL-1710-SDC-6


Select a guest OS

1. Leave selections default and click next

HOL-1710-SDC-6


Customize hardware

1. Expand the Detail of the New Hard Disk2. Change the size of the disk to 1GB (We will have capacity issues in the pod if we

don't shrink it)3. Validate that My Encryption Policy is selected - There should be a Pad Lock next to

the Disk before you expanded the details

HOL-1710-SDC-6


Customize Hardware

1. Click on VM Options2. Expand details on Encryption3. You can see Encryption is required for vMotion too4. Click Next

HOL-1710-SDC-6


Ready to complete

Now we are ready to create this VM

1. Click Finish

HOL-1710-SDC-6


ConclusionThank you for participating in the VMware Hands-on Labs. Be sure to visithttp://hol.vmware.com/ to continue your lab experience online.

Lab SKU: HOL-1710-SDC-6

Version: 20170502-054921

HOL-1710-SDC-6


http://hol.vmware.com/

Documents

Table of Contents - VMwaredocs.hol.vmware.com/HOL-2017/hol-1710-sdc-6_pdf_en.pdf · vCenter Server Appliance (VSCA) The next release of vCenter introduces a native option to protect