Browsed by
Author: Paweł

vRealize Automation 7 Installation – minimal deployment

vRealize Automation 7 Installation – minimal deployment

Ones might find it quite difficult to installa new product for the first time. Even though they installed previous version in the past (or particularly because of that!) That’s due to changes in requirements or event different structures of wizard form which requires information in different format. E.g domain administator accound in one version is required in administrator@domain.local format whils in other installation it accepts only domain\administrator format.

Thanks to that I’m going to provide the list of basic steps to install vRealize Automation 7 in minimal deployment.

I assume that you have successfully deployed the vRA appliance and prepared IaaS VM.

  1. I suggest to perform the initial configuration from IaaS VM which will be helpful during IaaS components installation during the process. After accessing the vRA appliance console at port 5480 providing default password, the wizard will start. At this stage you can choose the deployment type. Below you can see description of enterprise deployment. I will choose minimal deployment for now, though. It’s

vrainstall2 vrainstall3

2. Now it’s high time to prepare IaaS server for installation of IaaS components. In vRA 7.x it is much more simplier and faster process. You simply need to install the agent to let the wizard  discover the server and perform necessary steps then.vrainstall4

3. Here you can see that the server is discovered and you can move forward.vrainstall5

4. Next step is to check all the prerequisities and fix them if necessary.vrainstall6

5. Here you can see that there is a lot work to do on a freshly  installed Windows Server.vrainstall7

6. Furtunatelly the wizard will do the job by itself. That’s the time for short break 😉 It takes approximately 15 minutes to perform all steps.vrainstall87. When all tasks are done you can re-run the verification script to confirm that everything is fine and move to the next step.

vrainstall9

8. Provide the FQDN of vRA VM.vrainstall10

9. Here you are going to create a password which will be used by the system administrator account.

vrainstall11

10. Next step is to provide IaaS information, and here is the time to use domain\username format for IaaS Administrator account which should have local admin rights assigned.vrainstall12

11. Here you are going to provide information about the database server. I highly recommend to create new database. Keep in mind that IaaS administrator name which you provided in the previous step must have Sysadmin rights on Database Server. Without that the process will go forward. It will fail during the ending installation step, though. 
vrainstall14

12. For minimal or PoC deployment you can simply leave default values here.vrainstall15

13. The same as previous steps, leave it without changing. Just note the exact agent name which will be required during endpoint creation.vrainstall16

14. Provide the information for vRA self-signed certificates, untill you want to use custom ones.vrainstall17

15.  Provide the information for Web self-signed certificates, untill you want to use custom ones.

vrainstall18

16. Provide information for Manager service certificate.vrainstall19

17. Run the validation which might take about 10 minutes.
vrainstall21

18. Now it’s the time for some kind of backup in case something went wrong. I suggest to take snapshot of IaaS server just in case. Even though validation stage was completed successfully there are some issues which could happen during installation. (I’ve faced a failed installation due to lack of appropriate database permissions)vrainstall22

19. Next just start the installation.
vrainstall2320. If you didn’t miss anything your installation should be successfull 🙂
vrainstall25

21. Next you should provide the license key.vrainstall26

22. Deselect the VMware CEIP agreement checkbox.vrainstall27

23. You can also provide the password for initial config content. It’s expecially usefull in case of PoC installation. By clicking Create Initial Content button a blueprint for default automation on basic vRA configuration will be created and published in default tenant service catalog.

vrainstall28

24. After that you can will see the installation confirmation. Now you can start the play and begin the jurney with you vRA!
vrainstall29

Howto – Using Gmail as an Email server in vRalize Automation

Howto – Using Gmail as an Email server in vRalize Automation

Sometimes it is not possible to use corporation e-mail or deploy dedicated e-mail server expecially when it comes to a lab environment (and you are a little bit lazy like me to do it ;)). A workaround which I found is to configure my personal/fictional accounts profided by Gmail. It is more than enough in case you just want to see how notification or approval workflows work. It might not be enough if you want to deploy a little big bigger deployent with a few Business Groups and users, though. Of course there are plenty of other ways or small mail servers which you can deploy in a few minutes. I find gmail much more intuitive, though.

Anyway I’m going to show you how should Inbound and Outbound servers configurations look like.

Keep in mind the the outboud server is used to send notifications from vRA to users/managers etc. Inbound server is used to receive special kinds of notification by vRA from users. For instance when you are a Business Group Manager and you want to approve a request via e-mail without opening you vRA portal you can simply answer to the e-mail notification you received by clicking the hyperlink provided in that message. In this case you need to Inbound server configured.

Outboud Email configuration:

outbound

Inbound Email configuration:

Inbound

 

Note. Be aware that you have to change restiction policy on you Gmail account – you will receive an e-mail with detailed steps displaying the setting to change it after you click Test Connection in vRA’s e-mail configuration window.

Veeam One Reporter Server installation failed

Veeam One Reporter Server installation failed

During the recent deployment of Veeam One as part of Veeam Availability Suite I met a mysterious problem during the installation.
The problems seemed to be related to Veeam Reporter Server.
Environment characteristic:
– Veeam 9.5 with Update One
– Virtual Machine in Windows AD domain
– Domain user with log on as service and local Administrator privileges
– External clustered MS-SQL Server 2012
– Database created by the installator or using the script provided by Veeam – both ways checked with the same result

After starting the installation (running as Administrator just to make sure) it was goint to Reporter Server installation and during that something was going wrong and the whole
installation was rolling back.

In the logs of Reporter Server I found such information:

MSI (s) (28:64) [14:13:16:973]: Product: Veeam ONE Reporter Server — Installation operation failed.
MSI (s) (28:64) [14:13:16:973]: Windows Installer installed the product. Product Name: Veeam ONE Reporter Server. Product Version: 9.5.0.3201. Product Language: 1033.
Manufacturer: Veeam Software. Installation success or error status: 1603.

Going deeper I realised that the installator was able to connect to DB, but after that, when it checked that the DB exist or not and tried to reconnect the connection failed.

MSI (s) (28!40) [14:13:14:801]: Doing action: VmaVeeamOneSQLSettings_Check
Action start 14:13:14: VmaVeeamOneSQLSettings_Check.
MSI (s) (28:5C) [14:13:14:816]: Invoking remote custom action. DLL: C:\Windows\Installer\MSID04F.tmp, Entrypoint: _VmaVeeamOneSQLSettings_Check@4
***Veeam*** Windows authentication selected, impersonating will be performed.
***Veeam*** Impersonating. User: ‘ENERGA\veeamone’…
***Veeam*** Impersonation completed successfully.
***Veeam*** Connecting to SQL server. Instance: 192.168.1.187, User:
***Veeam*** SQL Server connection established.
***Veeam*** Sql Server version: 11.0.6544.0.
***Veeam*** Database ‘VeeamOneDB’ exists.
MSI (s) (28!60) [14:13:15:441]: PROPERTY CHANGE: Adding VM_ONE_DB_EXISTS property. Its value is ‘1’.
***Veeam*** Reconnecting to SQL server…
***Veeam*** Checking HADR…
***Veeam*** GET HADR configuration…
***Veeam*** HADR is enabled.
***Veeam*** Get replica role…
***Veeam*** An error occurred while connecting to SQL. Error code: 0x80040E14.
***Veeam*** Description: ‘ADODB::Connection->Execute failed. ErrorMessage: IDispatch error #3092.
Description: The user does not have permission to perform this action.
State: 42000, Native: 297, Source: Microsoft OLE DB Provider for SQL Server
Failed to connect to SQL Server ‘192.168.1.187’.
MSI (s) (28!60) [14:13:15:722]: Product: Veeam ONE Reporter Server — Failed to connect to SQL Server ‘10.1.10.132’.
MSI (s) (28!60) [14:13:15:722]: PROPERTY CHANGE: Adding VMONE_SQL_CHECKING_RESULT property. Its value is ‘0’.
Action ended 14:13:15: VmaVeeamOneSQLSettings_Check. Return value 1.
CustomAction VmaRP_SQLSettings_Check returned actual error code 1603 (note this may not be 100% accurate if translation happened inside sandbox)
Action ended 14:13:15: VmaRP_SQLSettings_Check. Return value 3.
CustomAction VmACheckCustomDialogsParams returned actual error code 1603 (note this may not be 100% accurate if translation happened inside sandbox)
Action ended 14:13:15: VmACheckCustomDialogsParams. Return value 3.

I wasn’t able to find anything on the Web which would be similar to my issue.
Then I tried to use a different database instanace – let’s say it was test one, with small difference – it was a standalone SQL Server beside the cluster.
And this time it worked correctly. This was really strange for my expecially in case I used the same VM, domain user, etc.

After that, guided by a Veeam Support I tried one more time installing each component separately. I mean installing first Veeam One server with WebUI option deselected.
Then using the CLI with fallowing commands I was able to successfully install Reporter and Business View.
cd /d D:\VeeamONEReporterWeb_x64.msi
cd /d D:\BV_x64.msi

During the installation of these additional components there is a wizard where is poissible to change internal database to external one.

VMware vExperts 2017 awards

VMware vExperts 2017 awards

VMware vExpert is a non technical award granted by a special committee every year. It is a special award because there is no exam or anything like that. VMware judges give it for individuals who have demonstrated significant contributions to the community and share their expertise with others. This means different kinds of activities like blogging, sharing the knowledge by other channels or social media as well as  public speakers, book authors, CloudCred task writing, script writers, VMUG leaders and VMTN community moderators.
VMW-LOGO-vEXPERT-2017-k

In this year we are very pleased to announce that both of us (Paweł Piotrowski and Daniel Okrasa) were awarded with this mysterious title for the first time. The whole list of vExpert 2017 can be found here.

We would like to thanks to all of our readers and your feedback. We promise to develop our blog with more interesting articles about our experiences and observations mostly in relation to VMware products 🙂

vSphere 6.5 – Update Manager changes

vSphere 6.5 – Update Manager changes

Going through our list of articles about new features in vSphere 6.5 the last one is vSphere Update Manager for vCenter Server Appliance. Since vSphere 6.5 it’s fully embedded and integrated with vCenter Server Appliance with no Windows dependencies. It means that vCenter Server Appliance delivers now Update Manager as an optional service similar to Auto Deploy, etc.

Since vSphere 6.5 there is no longer possible to connect Update Manager instance that is installed on a Windows Server machine with vCenter Appliance.

That’s mean that you have two ways to use Update Manager component:
• You can install the Update Manager server component either on the same Windows server where the vCenter Server is installed or on a separate machine. To install Update Manager, you must have Windows administrator credentials for the computer on which you install Update Manager.
• You can deploy vSphere Update Manager in a secured network without Internet access. In such a case, you can use the vSphere Update Manager download service to download update metadata and update binaries.

In the a facelifted Web Client Update Manager Web Client appears as an Update Manager tab under the Configure tab in vSphere Web Client.

The whole management processes are rather the same so there isn’t anything special and worth to notice here since the product is pretty simple, easy on of course it’s doing the job.

VMware Data Protection 6.1.3 backup of VMS with multiple disks

VMware Data Protection 6.1.3 backup of VMS with multiple disks

Recenly, I found a strange issue with my Customer’s VDP backup. There is VDP version 6.1.3 and vSphere 6.0 Update 2.

The problem is that the backup jobs of a few virtual machines got stuck at 92%. The state was present for more than week at the first try, untill it was manually cancelled.

vdp1

There is a way to check the actual status of backup via CLI. So did I.

Unfortunatelly the command mccli activity show –active displayed fallowing information:

vdp2

I went through lots of communities and KBs, extended the memory as one suggested but it didn’t help.

Then, I started to analyse logs more carefully ( of course I verified earlier that the snaps are consolidated, etc.) and realised that the progresss via CLI is going up to 20GB when it reaches about 45% at vSphere client task. But then it stops and nothing more happens even though the tasks progress go up to 92%. The courious thing is that the progress went up to 20GB which is the size of the one of disks in the VM. However, the VM has 2 disks, 20GB each, so there should be a value of 40 GB or 2 entries for each disk. That was a clue.

Then I tried a test to backup a freshly installed VM with 2 disks, despite the seconds disks was empty at all, the backup job get stuck the same way. Next thing was to remove the disk from the VM and voila – the backup jub ended successfully.

That’s mean that the workoardound is to backup only single disk Virtual Machine. But on the official documentation I did not find any restriction or constraint of VDP according to number of disks.

Furthermore I made additional test in my test environment where older version of VDP is present (6.0.3) and there wasn’t any problem with backups of VMs with multiple disks. It worked completely fine there. I reckon it’s a kind of new bug in the 6.1.3 version, I’ll try to check it with VMware Support and let you know.

 

If you had simmilar issue I’ll be glad to hear about it.

PowerCLI – useful tools

PowerCLI – useful tools

VMware PowerCLI is a powerful tool for daily task for every Admin. The pure console is most commonly used. However, there are a few alternatives to the simple console which could make the use of PowerCLI even more handy. I’ll describe them shortly in the next a few lines.

  1. Powershell ISE script editor, which provides a better user experience. It’s divided into two panes. The upper pane  is for viewing/editing script files, and the lower pane is for running individual commands and displaying their output (an analog of the standard PowerShell console).ISEYou can execute PowerCLI commands in the lower pane of PowerShell ISE or in the PowerShell console. It will be usefull also during the first steps with PowerCLI through analysing of some ready downloaded from Internet scripts.The most convenient way to do is to open a script in the upper pane of Powershell ISE. In this way you can select each individual command and executee by pressing F8 or “Run Selection” button. When the command execution is finished you will see “Completed” message at the bottom of the console.
  2. PowerGUI – it’s another script editor made by Quest Software which was acquired by Dell. powerguiIMHO it’s better organised than PowerShell ISE, the functions are rather simillar. However, instead of tabs with your scripts here you will be able to see the whole folder-tree with different kinds of scripts. It’s really helpful when you work with more than a few scripts.
VMware Auto Deploy Configuration in vSphere 6.5

VMware Auto Deploy Configuration in vSphere 6.5

 

 

 

The architecture of auto deploy has changed in vSphere 6.5, one of the main difference is the ImageBuilder build in vCenter and the fact that you can create image profiles through the GUI instead of PowerCLI. That is really good news for those how is not keen on PowerCLI. But let’s go throgh the new configuration process of Auto Deploy. Below I gathered all the necessary steps to configure Auto Deploy in your environment.

  1. Enable Auto Deploy services on vCenter Server. Move to Administration -> System Configuration -> Related Objects, look for and start fallowing services:
  • Auto Deploy
  • ImageBuilder Service

You can change the startup type to start them with the vCenter server automatically as well.

Caution! In case you do not see any services like on the screan below, probably vmonapi and vmware-sca services are stopped.ad1

To start them, log in to vCenter Server through SSH and use fallowing commands:

#service-control  – -status         // to verify the status of these services

#service-control  – -start vmonapi vmware-sca       //to start services

ad2

Next, go back to Web Client and refresh the page.

 

  1. Prepare the DHCP server and configure DHCP scope including default gateway. A Dynamic Host Configuration Protocol (DHCP) scope is the consecutive range of possible IP addresses that the DHCP server can lease to clients on a subnet. Scopes typically define a single physical subnet on your network to which DHCP services are offered. Scopes are the primary way for the DHCP server to manage distribution and assignment of IP addresses and any related configuration parameters to DHCP clients on the network.

When basic DHCP scope settings are ready, you need to configure additional options:

  • Option 066 – with the Boot Server Host Name
  • Option 067 – with the Bootfile Name (it is a file name observed at Auto Deploy Configuration tab on vCenter Server – kpxe.vmw-hardwired)

ad3

  1. Configure TFTP server. For lab purposes I nearly always using the SolarWinds TFTP server, it is very easy to manage. You need to copy the TFTP Boot Zip files available at Auto Deploy Configuration page observed in step 2 to TFTP server file folder and start the TFTP service.

ad4

At this stage when you are try to boot you fresh server should get the IP Address and connect to TFTP server. In the  Discovered Hosts tab of Auto Deploy Configuration you will be able to see these host which received IP addresses and some information from TFTP server, but no Deploy Rule has been assigned to them.

ad5

  1. Create an Image Profile.

Go to Auto Deploy Configuration page -> Software Depots tab  and Import Software Depot

ad6

 

Click on Image Profiles so see the Image Profiles that are defined in this Software Depot.

ad7

The ESXi software depot contains the image profiles and software packages (VIBs) that are used to run ESXi. An image profile is a list of VIBs.

 

Image profiles define the set of VIBs to boot ESXi hosts with. VMware and VMware partners make image profiles and VIBs available in public depots. Use the Image Builder PowerCLI to  examine the depot and the Auto Deploy rule engine to specify which image profile to assign to which host. VMware customers can create a custom image profile based on the public image profiles and VIBs in the depot and apply that image profile to the host.

 

  1. Add Software Depot.

Click on Add Software Depot icon and add custom depot.

ad8

Next point in the newly created custom software depot select Image Profiles and click  New Image Profile.

ad9

I selected the minimum required VIBs to boot ESXi host which are:

  • esx-base 6.5.0-0.0.4073352 VMware ESXi is a thin hypervisor integrated into server hardware.
  • misc-drivers 6.5.0-0.0.4073352 This package contains miscellaneous vmklinux drivers
  • net-vmxnet3 1.1.3.0-3vmw.650.0.0.4073352 VMware vmxnet3
  • scsi-mptspi 4.23.01.00-10vmw.650.0.0.4073352 LSI Logic Fusion MPT SPI driver
  • shim-vmklinux-9-2-2-0 6.5.0-0.0.4073352 Package for driver vmklinux_9_2_2_0
  • shim-vmklinux-9-2-3-0 6.5.0-0.0.4073352 Package for driver vmklinux_9_2_3_0
  • vmkplexer-vmkplexer 6.5.0-0.0.4073352 Package for driver vmkplexer
  • vsan 6.5.0-0.0.4073352 VSAN for ESXi.
  • vsanhealth 6.5.0-0.0.4073352 VSAN Health for ESXi.
  • ehci-ehci-hcd 1.0-3vmw.650.0.0.4073352 USB 2.0 ehci host driver
  • xhci-xhci 1.0-3vmw.650.0.0.4073352 USB 3.0 xhci host driver
  • usbcore-usb 1.0-3vmw.650.0.0.4073352 USB core driver
  • vmkusb 0.1-1vmw.650.0.0.4073352 USB Native Driver for VMware

But the list could be different for you.

 

ad10

  1. Create a Deploy Rule.

ad11

ad12

ad13

ad14

ad15

  1. Activate Deploy Rule

ad16

  1. That’s it, now you can restart you host, it should boot and install according to your configuration now.
VMware Auto Deploy considerations

VMware Auto Deploy considerations

According to VMware definitione vSphere Auto Deploy can provision hundreds of physical hosts with ESXi software. You can specify the image to deploy and the hosts to provision with the image. Optionally, you can specify host profiles to apply to the hosts, a vCenter Server location (datacenter, folder or cluster), and assign a script bundle for each host. In short that is the tool to automate your ESXi deployment or upgrade.

As far as I know in particular on the Polish market it is not a widely used tool. However, it can be helpful for Integrator’s Companies to improve and make far more faster deployment of new environments. Furthermore, VMware claims the scripted or automated deployments should be used for every deployment with 5 or more hosts. Nonetheless, even if you are woring as a System Engineer or  at other implementation position I believe you are not installing new deployments every week..If that is every month – lucky you.

Well, is it really worth to prepare the AutoDeploy environment to deploy for instance 8 new hosts? – It depends.

IMHO, for such small deployments if you are really keen on making it a little bit fater the better way is to use kickstarts scripts. It can be much faster, expecially in case you are using them at least from time to time and you have prepared a good template (According the vSphere 6.5 I’m changing my mind a little bit due to changes which make AutoDpeloy preparation far more quicker)

However, Auto Deploy that’s not only deployment. It can be a kind of environment and change management. That can only be a specific kind of infrastructure where you use AutoDeploy to boot ESXi hosts instead of booting from local hard drives/SD cards.

Nevertheless, in Polands it is easier to meet classic PXE deployment booting from SAN than AutoDeploy. Is it the same trend seen around the world?

I am looking forward to hearing from you about yours experience with Auto Deploy.

VCP Datacenter 6.5 Beta

VCP Datacenter 6.5 Beta

VMware announced the VCP Datacenter beta exam updated according to new features in vSphere 6.5.

It is expecially valuable for those who need to recertify or who do not have a valid VCP certification. People who already have active VCP6-DCV exam, passing this beta exam will not give any big reward, while even the title is the same. So there won’t be VCP6.5-DCV or so, it’s still VCP6-DCV Certification.

Anyway, as others VMware beta exam it costs only 50$, so it’s worth to consider it if your certification is going to expire soon.

Just keep in mind that beta exams contains far more questions than normal exams 🙂 In this case that’s 150 questions and 180 minutes.

Good luck!