Custom Properties in Machine Provisioning, Blueprints, and Build Profiles 9
Order of Precedence for Custom Properties 10
Bringing Resources Under vRealize Automation Management 11
Store User Credentials for Cloud Endpoints 12
Choosing an Endpoint Scenario 12
Create an Amazon AWS Endpoint 13
Create an OpenStack or PowerVC Endpoint 14
Preparing an Endpoint CSV File for Import 15
Import a List of Endpoints 16
Create a Fabric Group 17
Configure Machine Prefixes 18
Create a Business Group 19
Managing Key Pairs 20
Create a Key Pair 20
Upload the Private Key for a Key Pair 21
Export the Private Key from a Key Pair 21
Cloud Reservations 22
Cloud Reservation Selection 22
Choosing a Reservation Scenario 23
Create an Amazon AWS Reservation (non-VPC) 23
Create an Amazon AWS Reservation (VPC) 26
Create a Red Hat OpenStack Reservation 29
VMware, Inc.
Optional Configurations33
2
Build Profiles and Property Sets 33
Create a Property Set 34
Create a Build Profile 35
Configuring Reservation Policies 37
Configure a Reservation Policy 37
Static IP Address Assignment 39
Create a Network Profile for Static IP Address Assignment 39
Assign a Network Profile to a Reservation 41
3
IaaS Configuration for Cloud Platforms
Cost Information for Cloud Machines 42
Using Optional Amazon Features 43
Using Security Groups for Amazon Web Services 43
Understanding Amazon Web Service Regions 43
Using Virtual Private Cloud 44
Using Elastic Load Balancers 44
Using Elastic IP Addresses 44
Using Elastic Block Storage 45
Using Optional Red Hat OpenStack Features 46
Using Security Groups 46
Using Floating IP Addresses 46
Preparing for Provisioning47
3
Choosing a Cloud Provisioning Scenario 47
Preparing for Amazon Provisioning 47
Understanding Amazon Machine Images 48
Understanding Amazon Instance Types 49
Add an Amazon Instance Type 49
Preparing for OpenStack Provisioning 50
Preparing for Virtual Machine Image Provisioning 50
Preparing for Linux Kickstart Provisioning 51
Preparing for WIM Provisioning 53
Creating a Cloud Blueprint63
4
Choosing a Blueprint Scenario 63
Create an Amazon AWS Blueprint 64
Specify Amazon AWS Blueprint Information 65
Specify Amazon AWS Blueprint Build Information 66
Configure Amazon Machine Resources 66
Add Amazon AWS Blueprint Custom Properties 67
Configure Amazon AWS Blueprint Actions 68
Create a Basic Red Hat OpenStack Blueprint 69
Specify Basic Red Hat OpenStack Blueprint Information 69
Specify Basic Red Hat OpenStack Blueprint Build Information 70
Add Basic Red Hat OpenStack Blueprint Custom Properties 71
Configure Basic Red Hat OpenStack Blueprint Actions 72
Create a Red Hat OpenStack Blueprint for Linux Kickstart Provisioning 73
Specify Linux Kickstart Blueprint Information 73
Specify Linux Kickstart Blueprint Build Information 75
Add Required Properties to a Linux Kickstart Blueprint 76
Configure Linux Kickstart Blueprint Actions 79
VMware, Inc. 4
IaaS Configuration for Cloud Platforms
Create an OpenStack Blueprint for WIM Provisioning 80
Specify WIM Blueprint Information 81
Specify WIM Blueprint Build Information 82
Add Required Properties to a WIM Blueprint 83
Configure WIM Blueprint Actions 88
Publish a Blueprint 88
Configuring Advanced Blueprint Settings90
5
Reservation Policies 90
Add a Reservation Policy to a Blueprint 91
Configuring Network Settings 91
Add a Network Profile for Static IP Assignment to a Blueprint 92
Custom Properties for Networking 93
Enabling Visual Basic Scripts in Provisioning 96
Call a Visual Basic Script from a Blueprint 97
Add Active Directory Cleanup to a Blueprint 98
Enabling Remote Desktop Connections 100
Configure Connections Using RDP 100
Enable Connections Using RDP 101
Enable Connections Using SSH 102
Managing Cloud Infrastructure104
6
Managing Resource Usage 104
Resource Usage Terminology 104
Choosing a Resource Monitoring Scenario 105
Data Collection 106
Start Endpoint Data Collection Manually 107
Configure Compute Resource Data Collection 107
Manage Amazon EBS Volumes 109
Connecting to a Cloud Machine 109
Collect User Credentials for an Amazon Machine 110
Monitoring Workflows and Viewing Logs112
7
Machine Life Cycle and Workflow States for Cloud Platforms113
8
VMware, Inc. 5
IaaS Configuration for Cloud Platforms
IaaS Configuration for Cloud Platforms provides information about integrating cloud platforms such as
Amazon Web Services and Red Hat Enterprise Linux OpenStack Platform with
VMware vRealize ™ Automation.
This documentation guides you through the following processes:
n
Bringing resources under vCloud Automation Center management
n
Configuring IaaS features and policies
n
Preparing for provisioning
n
Creating machine blueprints
All of the IaaS configuration steps that you must complete before machine provisioning are included in
this document. For information about how to manage provisioned machines, see Tenant Administration.
Note Not all features and capabilities of vRealize Automation are available in all editions. For a
comparison of feature sets in each edition, see https://www.vmware.com/products/vrealize-automation/.
Intended Audience
This information is intended for IaaS administrators, fabric administrators, and business group managers
of vRealize Automation. This content is written for experienced Windows or Linux system administrators
who are familiar with virtualization technology and the basic concepts described in Foundations andConcepts.
VMware Technical Publications Glossary
VMware Technical Publications provides a glossary of terms that might be unfamiliar to you. For
definitions of terms as they are used in VMware technical documentation, go to
http://www.vmware.com/support/pubs.
Updated Information
This IaaS Configuration for Cloud Platforms is updated with each release of the product or when
necessary.
This table provides the update history of the IaaS Configuration for Cloud Platforms.
For information about obtaining your access key ID and secret access key, see
the Amazon documentation.
Red Hat OpenStackType the user name and password for Red Hat OpenStack user account.
The credentials you provide must be a user in the Red Hat OpenStack tenant
associated with the endpoint. If you have multiple Red Hat OpenStack endpoints
associated with different Red Hat OpenStack tenants, you can store the
credentials for a single user who is an administrator in all the tenants, or separate
administrator users for each Red Hat OpenStack tenant.
5
Click the Save icon (
What to do next
).
Now that your credentials are stored, you are ready to create an endpoint.
Choosing an Endpoint Scenario
IaaS administrators are responsible for creating the endpoints that allow vRealize Automation to
communicate with your infrastructure. Depending on your environment, the procedure to create the
endpoints differs slightly.
VMware, Inc. 12
IaaS Configuration for Cloud Platforms
Table 1‑2. Choosing an Endpoint Scenario
ScenarioProcedure
Connect to an Amazon AWS cloud service account.Create an Amazon AWS Endpoint
Connect to a Red Hat OpenStack tenant.Create an OpenStack or PowerVC Endpoint
Connect to a PowerVC tenant.Create an OpenStack or PowerVC Endpoint
Import a list of endpoints.
n
Preparing an Endpoint CSV File for Import
n
Import a List of Endpoints
Create an Amazon AWS Endpoint
An IaaS administrator creates an endpoint to connect to an Amazon Web Services instance.
Prerequisites
n
Log in to the vRealize Automation console as an IaaS administrator.
n
Store User Credentials for Cloud Endpoints.
Procedure
1Select Infrastructure > Endpoints > Endpoints.
2Select New Endpoint > Cloud > Amazon EC2.
3Enter a name and, optionally, a description.
Typically this name indicates the Amazon Web Services account that corresponds to this endpoint.
4Select the Credentials for the endpoint.
Only one endpoint can be associated with an Amazon access key ID.
5(Optional) Click the Use proxy server check mark box to configure additional security and force
connections to Amazon Web Services to pass through a proxy server.
aType the host name of your proxy server in the Hostname text box.
bType the port number to use for connecting to the proxy server in the Port text box.
c(Optional) Click the Browse icon next to the Credentials text box.
Select or create credentials that represent the user name and password for the proxy server, if
required by the proxy configuration.
6(Optional) Add any custom properties.
7Click OK.
After the endpoint is created, vRealize Automation begins collecting data from the Amazon Web Services
regions.
What to do next
Add the compute resources from your endpoint to a fabric group.
VMware, Inc. 13
IaaS Configuration for Cloud Platforms
See Create a Fabric Group.
Create an OpenStack or PowerVC Endpoint
An IaaS administrator creates an endpoint to allow vRealize Automation to communicate with your
OpenStack or PowerVC instance.
Prerequisites
n
Log in to the vRealize Automation console as an IaaS administrator.
n
Store User Credentials for Cloud Endpoints.
n
Verify that your vRealize Automation DEMs are installed on a machine that meets the Openstack or
PowerVC requirements. See Installation and Configuration.
Procedure
1Select Infrastructure > Endpoints > Endpoints.
2Select New Endpoint > Cloud > OpenStack.
3Enter a name and, optionally, a description.
4Type the URL for the endpoint in the Address text box.
OptionDescription
PowerVCThe URL must be of the format https://FQDN/powervc/openstack/service.
3Enter the machine prefix in the Machine Prefix text box.
4Enter the number of counter digits in the Number of Digits text box.
5Enter the counter start number in the Next Number text box.
6
Click the Save icon (
).
Tenant administrators can create business groups so that users can access vRealize Automation to
request machines.
VMware, Inc. 18
IaaS Configuration for Cloud Platforms
Create a Business Group
Tenant administrators create business groups to associate a set of services and resources to a set of
users, often corresponding to a line of business, department, or other organizational unit. Users must
belong to a business group to request machines.
To add multiple users to a business group role, you can add multiple individual users, or you can add
multiple users at the same time by adding an identity store group or a custom group to a role. For
example, you can create a custom group Sales Support Team and add that group to the support role. For
information about creating custom groups, see Tenant Administration. You can also use existing identity
store user groups. The users and groups you choose must be valid in the identity store.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator.
n
Request a machine prefix from a fabric administrator. See Configure Machine Prefixes.
Procedure
1Select Infrastructure > Groups > Business Groups.
2
Click the Add icon ().
3(Optional) Select an existing business group from the Copy from existing group drop-down box.
Data from the group you chose appears.
4Enter a name in the Name text box.
5(Optional) Enter a description in the Description text box.
6Select a Default machine prefix.
7(Optional) Type a default Active directory container for machines provisioned in this group and
press Enter.
The Active Directory container is used only for WIM provisioning. Other provisioning methods require
additional configuration to join provisioned machines to an AD container.
8Type a user name or group name in the Group manager role search box and press Enter.
Repeat this step to add more than one user or group to the role. You do not have to specify users at
this time. You can create empty business groups to populate later.
9Type one or more user names or group names in the Send manager emails to text box and press
Enter.
Multiple entries must be separated with commas. For example,
JoeAdmin@mycompany.com,WeiMgr@mycompany.com.
VMware, Inc. 19
IaaS Configuration for Cloud Platforms
10 Add users to your business group.
Multiple entries must be separated by line breaks. You do not have to specify users at this time. You
can create empty business groups to populate later.
aType a user name or group name in the Support role search box and press Enter.
Repeat this step to add more than one user or group to the role.
bType a user name or group name in the User role search box and press Enter.
Repeat this step to add more than one user or group to the role.
11 (Optional) Add any custom properties.
12 Click OK.
Fabric administrators can now allocate resources to your business group by creating a reservation.
Managing Key Pairs
Key pairs are used to provision and connect to a cloud instance. A key pair is used to decrypt Windows
passwords or to log in to a Linux machine.
Key pairs are required for provisioning with Amazon AWS. For Red Hat OpenStack, key pairs are
optional.
Existing key pairs are imported as part of data collection when you add a cloud endpoint. A fabric
administrator can also create and manage key pairs by using the vRealize Automation console. If you
delete a key pair from the vRealize Automation console, it is also deleted from the cloud service account.
In addition to managing key pairs manually, you can configure vRealize Automation to generate key pairs
automatically per machine or per business group.
n
A fabric administrator can configure the automatic generation of key pairs at a reservation level.
n
If the key pair is going to be controlled at the blueprint level, the fabric administrator must select Not
Specified on the reservation.
n
A tenant administrator or business group manager can configure the automatic generation of key
pairs at a blueprint level.
n
If key pair generation is configured at both the reservation and blueprint level, the reservation setting
overrides the blueprint setting.
Create a Key Pair
A fabric administrator can create key pairs for use with cloud endpoints by using the vRealize Automation
console.
Prerequisites
n
Log in to the vRealize Automation console as a fabric administrator.
n
An IaaS administrator must have created a cloud endpoint and added cloud compute resources to a
4(Optional) Add custom properties individually to your build profile.
aClick New Property.
bEnter the custom property in the Name text box.
cEnter the value of the custom property in the Value text box.
d(Optional) Select the Encrypted check box to encrypt the custom property in the database.
e(Optional) Select the Prompt user check box to require the user to provide a value when they
request a machine.
If you choose to prompt users for a value, any value you provide for the custom property is
presented to them as the default. If you do not provide a default, users cannot continue with the
machine request until they provide a value for the custom property.
f
Click the Save icon (
).
5(Optional) Select a property set to load into your build profile.
aSelect a property set from the Add from property set drop-down menu.
bClick Load.
6
(Optional) Click the Edit icon () to configure a custom property loaded from a property set.
aEnter the value of the custom property in the Value text box.
bSelect the Encrypted check box to encrypt the custom property in the database.
cSelect the Prompt user check box to require the user to provide a value when they request a
machine.
If you choose to prompt users for a value, any value you provide for the custom property is
presented to them as the default. If you do not provide a default, users cannot continue with the
machine request until they provide a value for the custom property.
d
Click the Save icon (
).
7Click OK.
VMware, Inc. 36
IaaS Configuration for Cloud Platforms
Tenant administrators and business group managers can now select your build profile and include it in
their blueprints.
Configuring Reservation Policies
When a user requests a machine, it can be provisioned on any reservation of the appropriate type that
has sufficient capacity for the machine. You can apply a reservation policy to a blueprint to restrict the
machines provisioned from that blueprint to a subset of available reservations.
Reservation policies provide an optional and helpful means of controlling how reservation requests are
processed. A reservation policy is often used to collect resources into groups for different service levels,
or to make a specific type of resource easily available for a particular purpose. The following scenarios
provide a few examples of possible uses for reservation policies:
n
To ensure that machines provisioned from a virtual blueprint are placed on reservations with storage
devices that support NetApp FlexClone
n
To restrict provisioning of cloud machines to a specific region containing a machine image that is
required for a specific blueprint
n
To restrict provisioning of Cisco UCS physical machines to reservations on endpoints on which the
selected service profile template and boot policy are available
n
As an additional means of using a Pay As You Go allocation model for vApps
You can add multiple reservations to a reservation policy, but a reservation can belong to only one policy.
You can assign a single reservation policy to more than one blueprint. A blueprint can have only one
reservation policy.
A reservation policy can include reservations of different types, but only reservations that match the
blueprint type are considered when selecting a reservation for a particular request. For more information
about how reservations are selected for provisioning a machine, see IaaS Configuration for CloudPlatforms, IaaS Configuration for Physical Machines, or IaaS Configuration for Virtual Platforms.
Configure a Reservation Policy
Fabric administrators create reservation policies to collect resources into groups for different service
levels, or to make a specific type of resource easily available for a particular purpose. After you create the
reservation policy, you then must populate it with reservations before tenant administrators and business
group managers can use the policy effectively in a blueprint.
Prerequisites
n
Log in to the vRealize Automation console as a fabric administrator.
n
Create at least one reservation.
VMware, Inc. 37
IaaS Configuration for Cloud Platforms
Procedure
1Create a Reservation Policy
Fabric administrators use reservation policies to group similar reservations together. Create the
reservation policy tag first, then add the policy to reservations to allow a tenant administrator or
business group manager to use the reservation policy in a blueprint.
2Assign a Reservation Policy to a Reservation
When fabric administrators create a reservation, the option to assign that reservation to a
reservation policy appears. To assign an existing reservation to a reservation policy, you edit the
reservation.
Create a Reservation Policy
Fabric administrators use reservation policies to group similar reservations together. Create the
reservation policy tag first, then add the policy to reservations to allow a tenant administrator or business
group manager to use the reservation policy in a blueprint.
Prerequisites
n
Log in to the vRealize Automation console as a fabric administrator.
3Select your reservation policy from the Reservation Policy drop-down menu.
4Click OK.
Tenant administrators and business group managers can now use your reservation policy in blueprints.
See Add a Reservation Policy to a Blueprint.
VMware, Inc. 38
IaaS Configuration for Cloud Platforms
.
Static IP Address Assignment
For virtual machines provisioned by using cloning or Linux kickstart/autoYaST provisioning and cloud
machines provisioned in Red Hat OpenStack by using kickstart, it is possible to assign static IP
addresses from a predefined range.
By default, vRealize Automation uses Dynamic Host Configuration Protocol (DHCP) to assign IP
addresses to provisioned machines.
Fabric administrators can create network profiles to define a range of static IP addresses that can be
assigned to machines. Network profiles can be assigned to specific network paths on a reservation. Any
cloud machine or virtual machine provisioned by cloning or kickstart/autoYaST that is attached to a
network path that has an associated network profile is provisioned using static IP address assignment.
Tenant administrators or business group managers can also assign network profiles to blueprints by using
the custom property VirtualMachine.NetworkN.ProfileName. If a network profile is specified in both the
blueprint and the reservation, the profile specified in the blueprint takes precedence.
When a machine that has a static IP address is destroyed, its IP address is made available for use by
other machines. The process to reclaim static IP addresses runs every 30 minutes, so unused addresses
may not be available immediately after the machines using them are destroyed. If there are not available
IP addresses in the network profile, machines cannot be provisioned with static IP assignment on the
associated network path.
Create a Network Profile for Static IP Address Assignment
Fabric administrators can create network profiles to define a range of static IP addresses that can be
assigned to machines.
Prerequisites
Log in to the vRealize Automation console as a fabric administrator.
Procedure
1Specify Network Profile Information
The network profile information identifies the external network profile and specifies settings for an
existing network.
2Configure IP Ranges
A fabric administrator can define one or more ranges of static IP addresses for use in provisioning a
machine.
What to do next
You can assign a network profile to a network path in a reservation, or a tenant admin or business group
manager can specify the network profile in a blueprint.
VMware, Inc. 39
IaaS Configuration for Cloud Platforms
Specify Network Profile Information
The network profile information identifies the external network profile and specifies settings for an existing
network.
Prerequisites
Log in to the vRealize Automation console as a fabric administrator.
5(Optional) Type an IP address in the Gateway text box.
The gateway address is required for a one-to-one NAT network profile.
6(Optional) In the DNS/WINS group, type values as needed.
The external network profile provides these values, which you can edit.
What to do next
The network profile is not finished. Do not navigate away from this page.
Configure IP Ranges
A fabric administrator can define one or more ranges of static IP addresses for use in provisioning a
machine.
Prerequisites
Specify Network Profile Information.
Procedure
1Click the IP Ranges tab.
2Click New Network Range.
The New Network Range dialog box appears.
3Enter a name and, optionally, a description.
4Enter an IP address in the Starting IP address text box.
5Enter an IP address in the Ending IP address text box.
VMware, Inc. 40
IaaS Configuration for Cloud Platforms
6Click OK.
The newly defined IP address range appears in the Defined Ranges list. The IP addresses in the
range appear in the Defined IP Addresses list.
7(Optional) Upload one or more IP addresses from a CSV file.
A row in the CSV file has the format ip_address,mname,status.
CSV FieldDescription
ip_address
mname
status
An IP address
Name of a managed machine in vRealize Automation. If the field is empty, defaults to no name.
Allocated or Unallocated, case-sensitive. If the field is empty, defaults to Unallocated.
aClick Browse next to the Upload CSV text box.
bNavigate to the CSV file and click Open.
cClick Process CSV File.
The uploaded IP addresses appear in the Defined IP Addresses list. If the upload fails, diagnostic
messages appear that identify the problems.
8(Optional) Filter IP address entries to only those that match.
aClick in the Defined IP Addresses text boxes.
bType a partial IP address or machine name, or select a date from the Last Modified drop-down
calendar.
The IP addresses that match the filter criteria appear.
9Click OK.
What to do next
You can assign a network profile to a network path in a reservation, or a tenant admin or business group
manager can specify the network profile in a blueprint.
Assign a Network Profile to a Reservation
Fabric administrators can assign a network profile to a reservation to enable static IP assignment to
machines provisioned on that reservation.
Network profiles can also be assigned to blueprints by using the custom property
VirtualMachine.NetworkN.ProfileName. If a network profile is specified in both the blueprint and the
reservation, the profile specified in the blueprint takes precedence.
Note This information does not apply to Amazon Web Services.
Prerequisites
n
Log in to the vRealize Automation console as a fabric administrator.
VMware, Inc. 41
IaaS Configuration for Cloud Platforms
n
Create a Network Profile for Static IP Address Assignment.
3Add a new instance type, specifying the following parameters and referencing Selecting Instance
Types and Amazon EC2 Instance Details topics in Amazon documentation.
n
Name
n
API name
n
Type Name
n
IO Performance Name
n
# CPUs
n
Memory (GB)
n
Storage (GB)
n
Compute Units
4
Click the Save icon ().
Preparing for OpenStack Provisioning
Before you provision instances with Red Hat OpenStack using virtual machine images, Linux kickstart, or
WIM provisioning you must prepare the appropriate machine images and flavors.
Preparing for Virtual Machine Image Provisioning
Before you provision instances with Red Hat OpenStack, you must have virtual machine images and
flavors configured in the Red Hat OpenStack provider.
Virtual Machine Images
A tenant administrator or business group manager selects an virtual machine image from a list of
available images when creating Red Hat OpenStack blueprints.
VMware, Inc. 50
IaaS Configuration for Cloud Platforms
A virtual machine image is a template that contains a software configuration, including an operating
system. Virtual machine images are managed within the Red Hat OpenStack provider and are imported
during data collection.
If an image that is used in a blueprint is later deleted from the Red Hat OpenStack provider, it is also
removed from the blueprint. If all the images have been removed from a blueprint, the blueprint is
disabled and cannot be used for machine requests until it is edited to add at least one image.
OpenStack Flavors
A tenant administrator or business group manager selects one or more flavors when creating
Red Hat OpenStack blueprints.
Flavors are virtual hardware templates that define the machine resource specifications for instances
provisioned in Red Hat OpenStack. Flavors are managed within the Red Hat OpenStack provider and are
imported during data collection.
If a flavor that is used in a blueprint is later deleted from the Red Hat OpenStack provider, it is also
removed from the blueprint. If all the flavors have been removed from a blueprint, the blueprint is disabled
and cannot be used for machine requests until it is edited to add at least one flavor.
Preparing for Linux Kickstart Provisioning
Linux Kickstart provisioning uses a configuration file to automate a Linux installation on a newly
provisioned machine. To prepare for provisioning you must create a bootable ISO image and a kickstart
or autoYaST configuration file.
The following is a high-level overview of the steps required to prepare for Linux Kickstart provisioning:
1Ensure that a DHCP server is available on the network. vRealize Automation cannot provision
machines by using Linux Kickstart provisioning unless DHCP is available.
2Prepare the configuration file. In the configuration file, you must specify the locations of the
vRealize Automation server and the Linux agent installation package. See Prepare the Linux Kickstart
Configuration Sample File.
3Edit the isolinux/isolinux.cfg or loader/isolinux.cfg to specify the name and location of the
configuration file and the appropriate Linux distribution source.
4Create the boot ISO image and save it to the location required by your virtualization platform. Please
see the documentation provided by your hypervisor if you do not know the required location.
5(Optional) Add customization scripts.
aTo specify post-installation customization scripts in the configuration file, see Specify Custom
Scripts in a kickstart/autoYaST Configuration File.
bTo call Visual Basic scripts in blueprint, see Enabling Visual Basic Scripts in Provisioning.
6Gather the following information so that tenant administrators and business group managers can
include it in their blueprints:
aThe name and location of the ISO image.
VMware, Inc. 51
IaaS Configuration for Cloud Platforms
bFor vCenter Server integrations, the vCenter Server guest operating system version with which
vCenter Server is to create the machine.
Note You can create a build profile with the property set BootIsoProperties to include the required
ISO information. This makes it easier for tenant administrators and business group managers to
include this information correctly in their blueprints.
Prepare the Linux Kickstart Configuration Sample File
vRealize Automation provides sample configuration files that you can modify and edit to suit your needs.
There are several changes required to make the files usable.
Procedure
1Navigate to the vCloud Automation Center Appliance management console installation page.
For example: https://vcac-hostname.domain.name:5480/installer/.
2Download and save the Linux Guest Agent Packages.
3Unpack the LinuxGuestAgentPkgs file.
4Navigate to the LinuxGuestAgentPkgs file and locate the subdirectory that corresponds to the guest
operating system that you are deploying during provisioning.
5Open the sample-https.cfg file.
6Replace all instances of the string host=dcac.example.net with the IP address or fully qualified
domain name and port number for the vRealize Automation server host.
PlatformRequired Format
vSphere ESXiIP Address, for example: --host=172.20.9.59
vSphere ESXIP Address, for example: --host=172.20.9.58
SUSE 10IP Address, for example: --host=172.20.9.57
All othersFQDN, for example: --host=mycompany-host1.mycompany.local:443
7Locate each instance of gugent.rpm or gugent.tar.gz and replace the URL rpm.example.net
with the location of the guest agent package.
For example:
rpm -i nfs:172.20.9.59/suseagent/gugent.rpm
8Save the file to a location accessible to newly provisioned machines.
Specify Custom Scripts in a kickstart/autoYaST Configuration File
You can modify the configuration file to copy or install custom scripts onto newly provisioned machines.
The Linux agent runs the scripts at the specified point in the workflow.
VMware, Inc. 52
IaaS Configuration for Cloud Platforms
Your script can reference any of the ./properties.xml files in
the /usr/share/gugent/site/workitem directories.
Prerequisites
n
Prepare a kickstart or autoYaST configuration file. See Prepare the Linux Kickstart Configuration
Sample File.
n
Your script must return a non-zero value on failure to prevent machine provisioning failure.
Procedure
1Create or identify the script you want to use.
2Save the script as NN_scriptname.
NN is a two digit number. Scripts are executed in order from lowest to highest. If two scripts have the
same number, the order is alphabetical based on scriptname.
3Make your script executable.
4Locate the post-installation section of your kickstart or autoYaST configuration file.
In kickstart, this is indicated by %post. In autoYaST, this is indicated by post-scripts.
5Modify the post-installation section of the configuration file to copy or install your script into
the /usr/share/gugent/site/workitem directory of your choice.
Custom scripts are most commonly run for virtual kickstart/autoYaST with the work items SetupOS
(for create provisioning) and CustomizeOS (for clone provisioning), but you can run scripts at any
point in the workflow.
For example, you can modify the configuration file to copy the script 11_addusers.sh to
the /usr/share/gugent/site/SetupOS directory on a newly provisioned machine by using the
The Linux agent runs the script in the order specified by the work item directory and the script file name.
Preparing for WIM Provisioning
Provision a machine by booting into a WinPE environment and then install an operating system using a
Windows Imaging File Format (WIM) image of an existing Windows reference machine.
The following is a high-level overview of the steps required to prepare for WIM provisioning:
1Identify or create the staging area. This should be a network directory that can be specified as a UNC
path or mounted as a network drive by the reference machine, the system on which you build the
WinPE image, and the virtualization host on which machines are provisioned.
2Ensure that a DHCP server is available on the network. vRealize Automation cannot provision
machines by using a WIM image unless DHCP is available.
VMware, Inc. 53
IaaS Configuration for Cloud Platforms
3Identify or create the reference machine within the virtualization platform you intend to use for
provisioning. For vRealize Automation requirements, see Reference Machine Requirements for WIM
Provisioning. For information about creating a reference machine, please see the documentation
provided by your hypervisor.
4Using the System Preparation Utility for Windows, prepare the reference machine's operating system
for deployment. See SysPrep Requirements for the Reference Machine.
5Create the WIM image of the reference machine. Do not include any spaces in the WIM image file
name or provisioning fails.
6(Optional) Create any custom scripts you want to use to customize provisioned machines and place
them in the appropriate work item directory of your PEBuilder installation. See Specify Custom Scripts
in a PEBuilder WinPE.
7Create a WinPE image that contains the vRealize Automation guest agent. You can use the
vRealize Automation PEBuilder to create the WinPE image. See Create a WinPE Image by Using
PEBuilder. You can create the WinPE image by using another method, but you must manually insert
the vRealize Automation guest agent. See Manually Insert the Guest Agent into a WinPE Image.
8Place the WinPE image in the location required by your virtualization platform. If you do not know the
location, please see the documentation provided by your hypervisor.
9Gather the following information so that tenant administrators and business group managers can
include it in their blueprints:
aThe name and location of the WinPE ISO image.
bThe name of the WIM file, the UNC path to the WIM file, and the index used to extract the desired
image from the WIM file.
cThe user name and password under which to map the WIM image path to a network drive on the
provisioned machine.
d(Optional) If you do not want to accept the default, K, the drive letter to which the WIM image path
is mapped on the provisioned machine.
eFor vCenter Server integrations, the vCenter Server guest operating system version with which
vCenter Server is to create the machine.
f(Optional) For SCVMM integrations, the ISO, virtual hard disk, or hardware profile to attach to
provisioned machines.
Note You can create a build profile with the property set WimImagingProperties to include all of this
required information. This makes it easier for tenant administrators and business group managers to
include this information correctly in their blueprints. Optionally, you can also add the property set
SysprepProperties and prompt tenant administrators and business group managers to specify or
overwrite settings in the SysPrep answer file.
VMware, Inc. 54
IaaS Configuration for Cloud Platforms
Reference Machine Requirements for WIM Provisioning
WIM provisioning involves creating a WIM image from a reference machine. The reference machine must
meet basic requirements for the WIM image to work for provisioning in vRealize Automation.
The following is a high-level overview of the steps to prepare a reference machine:
1If the operating system on your reference machine is Windows Server 2008 R2, Windows Server
2012, Windows 7, or Windows 8, the default installation creates a small partition on the system's hard
disk in addition to the main partition. vRealize Automation does not support the use of WIM images
created on such multi-partitioned reference machines. You must delete this partition during the
installation process.
2Install NET 4.5 and Windows Automated Installation Kit (AIK) for Windows 7 (including WinPE 3.0) on
the reference machine.
3If the reference machine operating system is Windows Server 2003 or Windows XP, reset the
administrator password to be blank. (There is no password.)
4(Optional) If you want to enable XenDesktop integration, install and configure a
Citrix Virtual Desktop Agent.
5(Optional) A Windows Management Instrumentation (WMI) agent is required to collect certain data
from a Windows machine managed by vRealize Automation, for example the Active Directory status
of a machine’s owner. To ensure successful management of Windows machines, you must install a
WMI agent (typically on the Manager Service host) and enable the agent to collect data from
Windows machines. See Installation and Configuration.
SysPrep Requirements for the Reference Machine
A SysPrep answer file is required for WIM provisioning and there are a number of required settings.
Table 3‑2. Windows Server 2003 or Windows XP reference machine SysPrep required
settings:
GuiUnattended Settings
AutoLogonYes
AutoLogonCount1
AutoLogonUsername
AutoLogonPassword
Value
username
(username and password are the credentials used for auto
logon when the newly provisioned machine boots into the guest
operating system. Administrator is typically used.)
password corresponding to the AutoLogonUsername.
Table 3‑3. Required SysPrep Settings for reference machine that are not using Windows
Server 2003 or Windows XP:
AutoLogon Settings
EnabledYes
LogonCount1
VMware, Inc. 55
Value
IaaS Configuration for Cloud Platforms
Table 3‑3. Required SysPrep Settings for reference machine that are not using Windows
Server 2003 or Windows XP: (Continued)
AutoLogon Settings
Username
Password
Value
username
(username and password are the credentials used for auto
logon when the newly provisioned machine boots into the guest
operating system. Administrator is typically used.)
password
(username andpassword are the credentials used for auto logon
when the newly provisioned machine boots into the guest
operating system. Administrator is typically used.)
Note For reference machines that use a Windows platform
newer than Windows Server 2003/Windows XP, you must set
the autologon password by using the custom property
Sysprep.GuiUnattended.AdminPassword. A convenient way
to ensure this is done is to create a build profile that includes
this custom property so that tenant administrators and business
group managers can include this information correctly in their
blueprints.
Install PEBuilder
The PEBuilder tool provided by vRealize Automation provides a simple way to include the
vRealize Automation guest agent in your WinPE images.
PEBuilder has a 32 bit guest agent. If you need to run commands specific to 64 bit, install PEBuilder and
then get the 64 bit files from the GugentZipx64.zip file.
Install PEBuilder in a location where you can access your staging environment.
Prerequisites
n
Install NET Framework 4.5.
n
Windows Automated Installation Kit (AIK) for Windows 7 (including WinPE 3.0) is installed.
Procedure
1Navigate to the vCloud Automation Center Appliance management console installation page.
For example: https://vcac-hostname.domain.name:5480/installer/.
2Download the PEBuilder.
3(Optional) Download the Windows 64-bit guest agent package if you want to include the Windows 64-
bit guest agent in your WinPE instead of the Windows 32-bit guest agent.
4Run vCAC-WinPEBuilder-Setup.exe.
5Follow the prompts to install PEBuilder.
6(Optional) Replace the Windows 32-bit guest agent files located in \PE Builder\Plugins\VRM
Agent\VRMGuestAgent with the 64-bit files to include the 64-bit agent in your WinPE.
VMware, Inc. 56
IaaS Configuration for Cloud Platforms
You can use PEBuilder to create a WinPE for use in WIM provisioning.
Specify Custom Scripts in a PEBuilder WinPE
You can use PEBuilder to customize machines by running custom bat scripts at specified points in the
provisioning workflow.
Prerequisites
Install PEBuilder.
Procedure
1Create or identify the bat script you want to use.
Your script must return a non-zero value on failure to prevent machine provisioning failure.
2Save the script as NN_scriptname.
NN is a two digit number. Scripts are executed in order from lowest to highest. If two scripts have thesame number, the order is alphabetical based on scriptname.
3Make your script executable.
4Place the scripts in the work item subdirectory that corresponds to the point in the provisioning
workflow you want the script to run.
For example, C:\Program Files (x86)\VMware\vRA\PE Builder\Plugins\VRM
Agent\VRMGuestAgent\site\SetupOS.
The agent runs the script in the order specified by the work item directory and the script file name.
Create a WinPE Image by Using PEBuilder
Use the PEBuilder tool provided by vRealize Automation to create a WinPE ISO file that includes the
vRealize Automation guest agent.
Prerequisites
n
Install PEBuilder.
n
(Optional) Configure PEBuilder to include the Windows 64-bit guest agent in your WinPE instead of
the Windows 32-bit guest agent. See Install PEBuilder.
n
(Optional) Add any third party plugins you want to add to the WinPE image to the PlugIns
subdirectory of the PEBuilder installation directory.
n
(Optional) Specify Custom Scripts in a PEBuilder WinPE.
Procedure
1Run PEBuilder.
VMware, Inc. 57
IaaS Configuration for Cloud Platforms
2Enter the IaaS Manager Service host information.
OptionDescription
If you are using a load balanceraEnter the fully qualified domain name of the load balancer for the IaaS
Manager Service in the vCAC Hostname text box. For example,
manager_service_LB.mycompany.com.
bEnter the port number for the IaaS Manager Service load balancer in the
vCAC Port text box. For example, 443.
With no load balanceraEnter the fully qualified domain name of the IaaS Manager Service machine
in the vCAC Hostname text box. For example,
manager_service.mycompany.com.
bEnter the port number for the IaaS Manager Service machine in the vCAC
Port text box. For example, 443.
3Enter the path to the PEBuilder plugins directory.
This depends on the installation directory specified during installation. The default is C:\Program
Files (x86)\VMware\vCAC\PE Builder\PlugIns.
4Enter the output path for the ISO file you are creating in the ISO Output Path text box.
This location should be on the staging area you prepared.
5Click File > Advanced.
Note Do not change the WinPE Architecture or Protocol settings.
6Select the Include vCAC Guest Agent in WinPE ISO check box.
7Click OK.
8Click Build.
What to do next
Place the WinPE image in the location required by your integration platform. If you do not know the
location, please see the documentation provided by your platform.
Manually Insert the Guest Agent into a WinPE Image
You do not have to use the vRealize Automation PEBuilder to create your WinPE. However, if you do not
use the PEBuilder you must manually insert the vRealize Automation guest agent into your WinPE image.
Prerequisites
n
Select a Windows system from which the staging area you prepared is accessible and on which .NET
4.5 and Windows Automated Installation Kit (AIK) for Windows 7 (including WinPE 3.0) are installed.
n
Create a WinPE.
VMware, Inc. 58
IaaS Configuration for Cloud Platforms
Procedure
1Install the Guest Agent in a WinPE
If you choose not to use the vRealize Automation PEBuilder to create you WinPE, you must install
PEBuilder to manually copy the guest agent files to your WinPE image.
2Configure the doagent.bat File
If you choose not to use the vRealize Automation PEBuilder, you must manually configure the
doagent.bat file.
3Configure the doagentc.bat File
If you choose not to use the vRealize Automation PEBuilder, you must manually configure the
doagentc.bat file.
4Configure the Guest Agent Properties Files
If you choose not to use the vRealize Automation PEBuilder, you must manually configure the guest
agent properties files.
Install the Guest Agent in a WinPE
If you choose not to use the vRealize Automation PEBuilder to create you WinPE, you must install
PEBuilder to manually copy the guest agent files to your WinPE image.
PEBuilder has a 32 bit guest agent. If you need to run commands specific to 64 bit, install PEBuilder and
then get the 64 bit files from the GugentZipx64.zip file.
Prerequisites
n
Select a Windows system from which the staging area you prepared is accessible and on which .NET
4.5 and Windows Automated Installation Kit (AIK) for Windows 7 (including WinPE 3.0) are installed.
n
Create a WinPE.
Procedure
1Navigate to the vCloud Automation Center Appliance management console installation page.
For example: https://vcac-hostname.domain.name:5480/installer/.
2Download the PEBuilder.
3(Optional) Download the Windows 64-bit guest agent package if you want to include the Windows 64-
bit guest agent in your WinPE instead of the Windows 32-bit guest agent.
4Execute vCAC-WinPEBuilder-Setup.exe.
5Deselect both Plugins and PEBuilder.
6Expand Plugins and select VRMAgent.
7Follow the prompts to complete the installation.
8(Optional) After installation is complete, replace the Windows 32-bit guest agent files located in \PE
Builder\Plugins\VRM Agent\VRMGuestAgent with the 64-bit files to include the 64-bit agent in
your WinPE.
VMware, Inc. 59
IaaS Configuration for Cloud Platforms
9Copy the contents of %SystemDrive%\Program Files (x86)\VMware\PE Builder\Plugins\VRM
Agent\VRMGuestAgent to a new location within your WinPE Image.
For example: C:\Program Files (x86)\VMware\PE Builder\Plugins\VRM
Agent\VRMGuestAgent.
Configure the doagent.bat File
If you choose not to use the vRealize Automation PEBuilder, you must manually configure the
doagent.bat file.
Prerequisites
Install the Guest Agent in a WinPE.
Procedure
1Navigate to the VRMGuestAgent directory within your WinPE Image.
For example: C:\Program Files (x86)\VMware\PE Builder\Plugins\VRM
Agent\VRMGuestAgent.
2Make a copy of the file doagent-template.bat and name it doagent.bat.
3Open doagent.bat in a text editor.
4Replace all instances of the string #Dcac Hostname# with the fully qualified domain name and port
number of the IaaS Manager Service host.
OptionDescription
If you are using a load balancerEnter the fully qualified domain name and port of the load balancer for the IaaS
Manager Service. For example,
manager_service_LB.mycompany.com:443
With no load balancerEnter the fully qualified domain name and port of the machine on which the IaaS
Manager Service is installed. For example,
manager_service.mycompany.com:443
5Replace all instances of the string #Protocol# with the string /ssl.
6Replace all instances of the string #Comment# with REM (REM must be followed by a trailing space).
7(Optional) If you are using self-signed certificates, uncomment the openSSL command.
9Edit the Startnet.cmd script for your WinPE to include the doagent.bat as a custom script.
VMware, Inc. 60
IaaS Configuration for Cloud Platforms
Configure the doagentc.bat File
If you choose not to use the vRealize Automation PEBuilder, you must manually configure the
doagentc.bat file.
Prerequisites
Configure the doagent.bat File.
Procedure
1Navigate to the VRMGuestAgent directory within your WinPE Image.
For example: C:\Program Files (x86)\VMware\PE Builder\Plugins\VRM
Agent\VRMGuestAgent.
2Make a copy of the file doagentsvc-template.bat and name it doagentc.bat.
3Open doagentc.bat in a text editor.
4Remove all instance of the string #Comment#.
5Replace all instances of the string #Dcac Hostname# with the fully qualified domain name and port
number of the Manager Service host.
The default port for the Manager Service is 443.
OptionDescription
If you are using a load balancerEnter the fully qualified domain name and port of the load balancer for the
Manager Service. For example,
load_balancer_manager_service.mycompany.com:443
With no load balancerEnter the fully qualified domain name and port of the Manager Service. For
example,
manager_service.mycompany.com:443
6Replace all instances of the string #errorlevel# with the character 1.
7Replace all instances of the string #Protocol# with the string /ssl.
8Save and close the file.
Configure the Guest Agent Properties Files
If you choose not to use the vRealize Automation PEBuilder, you must manually configure the guest
agent properties files.
Prerequisites
Configure the doagentc.bat File.
VMware, Inc. 61
IaaS Configuration for Cloud Platforms
Procedure
1Navigate to the VRMGuestAgent directory within your WinPE Image.
For example: C:\Program Files (x86)\VMware\PE Builder\Plugins\VRM
Agent\VRMGuestAgent.
2Make a copy of the file gugent.properties and name it gugent.properties.template.
3Make a copy of the file gugent.properties.template and name it gugentc.properties.
4Open gugent.properties in a text editor.
5Replace all instances of the string GuestAgent.log the string
X:/VRMGuestAgent/GuestAgent.log.
6Save and close the file.
7Open gugentc.properties in a text editor.
8Replace all instances of the string GuestAgent.log the string
C:/VRMGuestAgent/GuestAgent.log.
9Save and close the file.
VMware, Inc. 62
Creating a Cloud Blueprint4
Machine blueprints determine the attributes of the machine, the manner in which it is provisioned, and its
policy and management settings. A tenant administrator or business group manager creates blueprints for
provisioning machines.
This chapter includes the following topics:
n
Choosing a Blueprint Scenario
n
Create an Amazon AWS Blueprint
n
Create a Basic Red Hat OpenStack Blueprint
n
Create a Red Hat OpenStack Blueprint for Linux Kickstart Provisioning
n
Create an OpenStack Blueprint for WIM Provisioning
n
Publish a Blueprint
Choosing a Blueprint Scenario
Depending on your environment and the methods of provisioning your fabric administrators have
prepared, there are several procedures available to create the blueprint for your needs.
Unless otherwise noted in the Choosing a Blueprint Scenario table, all of these provisioning methods
require preparation by your fabric administrators before you can create a blueprint and provision
machines. Please contact your fabric administrators to determine which provisioning methods they have
prepared for you.
Table 4‑1. Choosing a Blueprint Scenario
Supported
Scenario
Launch an instance from an Amazon
Machine Image.
Launch an instance from a virtual machine
image.
VMware, Inc. 63
PlatformsProcedureCustom Properties
Amazon AWSCreate an Amazon AWS
Blueprint
Red Hat
OpenStack
Create a Basic Red Hat
OpenStack Blueprint
No custom properties are
required. A load balancer can be
configured before or after install.
No custom properties are
required.
IaaS Configuration for Cloud Platforms
Table 4‑1. Choosing a Blueprint Scenario (Continued)
Supported
Scenario
PlatformsProcedureCustom Properties
Provision a machine by booting from an
ISO image, using a kickstart or autoYaSt
configuration file and a Linux distribution
image to install the operating system on
the machine.
Provision a machine by booting into a
WinPE environment and installing an
operating system using a Windows
Imaging File Format (WIM) image of an
existing Windows reference machine.
Red Hat
OpenStack
Red Hat
OpenStack
Create a Red Hat OpenStack
Blueprint for Linux Kickstart
Provisioning
Create an OpenStack Blueprint
for WIM Provisioning
Custom Properties for Linux
Kickstart Blueprints
Custom Properties for WIM
Blueprints
Create an Amazon AWS Blueprint
Machine blueprints determine the attributes of the machine, the manner in which it is provisioned, and its
policy and management settings. A tenant administrator or business group manager creates a blueprint
for provisioning machines.
Prerequisites
Log in to the vRealize Automation console as a tenant administrator or business group manager.
Procedure
1Specify Amazon AWS Blueprint Information
Tenant administrators or business group managers use blueprint information settings to control who
can access a blueprint, how many machines they can provision with it, and daily costs.
2Specify Amazon AWS Blueprint Build Information
Tenant administrators or business group managers use build information settings to determine how
a machine is provisioned.
3Configure Amazon Machine Resources
Machine resource settings control the resources consumed by a machine provisioned by using your
blueprint.
4Add Amazon AWS Blueprint Custom Properties
Adding custom properties to a blueprint gives you detailed control over provisioned machines.
5Configure Amazon AWS Blueprint Actions
Tenant administrators or business group managers use blueprint actions and entitlements to
maintain detailed control over provisioned machines.
What to do next
The blueprint is not available as a catalog item until you publish it. See Publish a Blueprint.
VMware, Inc. 64
IaaS Configuration for Cloud Platforms
Specify Amazon AWS Blueprint Information
Tenant administrators or business group managers use blueprint information settings to control who can
access a blueprint, how many machines they can provision with it, and daily costs.
Prerequisites
Log in to the vRealize Automation console as a tenant administrator or business group manager.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Select New Blueprint > Cloud > Amazon EC2.
3Enter a name and, optionally, a description.
4(Optional) Select the Master check box to allow users to copy your blueprint.
5Select the Display location on request check box to prompt users to select a location when they
submit a machine request.
This option enables users to select a region into which to provision the requested machine.
6Select who can provision machines with this blueprint.
RolesWho Can Provision
If you are both a business group
manager and a tenant administrator
Business group managerSelect a business group from the Business group drop-down menu.
Tenant administratorYour blueprints are always shared. You cannot choose who can use them to
n
Select the Shared blueprint check box to allow the blueprint to be entitled to
users in any business group.
n
Deselect the Shared blueprint check box to create a local blueprint, and
select a business group from the Business group drop-down menu.
provision machines.
7(Optional) Select a reservation policy from the Reservation policy drop-down menu.
This option requires additional configuration by a fabric administrator to create a reservation policy.
8Select a machine prefix from the Machine prefix drop-down menu.
You can select Use group default to accept the default machine prefix business group for the user.
9(Optional) Enter a number in the Maximum per user text box to limit the number of machines that a
single user can provision with this blueprint.
10 Set the daily cost of the machine by typing the amount in the Cost (daily) text box.
Your blueprint is not finished. Do not navigate away from this page.
VMware, Inc. 65
IaaS Configuration for Cloud Platforms
Specify Amazon AWS Blueprint Build Information
Tenant administrators or business group managers use build information settings to determine how a
machine is provisioned.
Prerequisites
Specify Amazon AWS Blueprint Information.
Procedure
1Click the Build Information tab.
2Select whether machines provisioned from this blueprint are classified as Desktop or Server from the
Blueprint type drop-down menu.
This information is for record-keeping and licensing purposes only.
3Select CloudProvisioningWorkflow from the Provisioning workflow drop-down menu.
4Click the Browse icon next to the Amazon machine image text box.
5Select an Amazon machine image from the list.
6Click OK.
7Select a key pair generation method from the Key pair drop-down menu.
OptionDescription
Not SpecifiedSelect to control key pair behavior at the reservation level rather than the
blueprint level.
Auto Generated per Business GroupEach machine provisioned in the same business group has the same key pair. If
you delete the business group, its key pair is also deleted.
Auto Generated per MachineEach machine has a unique key pair.
8(Optional) Select the Enable Amazon network options on machine check box to allow users to
choose whether to provision a machine in a virtual private cloud (VPC) or non-VPC location when
they submit the request.
Your blueprint is not finished. Do not navigate away from this page.
Configure Amazon Machine Resources
Machine resource settings control the resources consumed by a machine provisioned by using your
blueprint.
You cannot add or edit Amazon instance types after you create the blueprint.
Prerequisites
Specify Amazon AWS Blueprint Build Information.
VMware, Inc. 66
IaaS Configuration for Cloud Platforms
Procedure
1Select one or more Instance types check boxes to select one or more Amazon instance types that
users can select from when they submit a machine request.
Selecting one or more instance types updates values in the # CPUs, Memory, and Storage (GB) text
boxes. Review the minimum and maximum machine resource values and adjust your instance type
selections as desired.
2(Optional) Specify the EBS storage settings for provisioned machines.
aEnter the minimum amount of storage in the Minimum text box.
If you only provide a minimum, this number becomes the value for all machines provisioned from
this blueprint.
b(Optional) Enter the maximum amount of storage in the Maximum text box to allow users to
select their own settings within the range that you provide.
3(Optional) Specify the lease settings for provisioned machines, or leave blank for no expiration date.
aEnter the minimum number of lease days in the Minimum text box.
If you only provide a minimum, this number becomes the value for all machines provisioned from
this blueprint.
b(Optional) Enter the maximum number of lease days in the Maximum text box to allow users to
select their own settings within the range that you provide.
Your blueprint is not finished. Do not navigate away from this page.
Add Amazon AWS Blueprint Custom Properties
Adding custom properties to a blueprint gives you detailed control over provisioned machines.
For information about custom properties for Amazon, see Custom Properties Reference.
Prerequisites
Configure Amazon Machine Resources.
Procedure
1Click the Properties tab.
2(Optional) Select one or more build profiles from the Build profiles menu.
Build profiles contain groups of custom properties. Fabric administrators can create build profiles.
3(Optional) Add any custom properties to your blueprint.
aClick New Property.
bEnter the custom property in the Name text box.
cEnter the value of the custom property in the Value text box.
VMware, Inc. 67
IaaS Configuration for Cloud Platforms
d(Optional) Select the Encrypted check box to encrypt the custom property in the database.
e(Optional) Select the Prompt user check box to require the user to provide a value when they
request a machine.
If you choose to prompt users for a value, any value you provide for the custom property is
presented to them as the default. If you do not provide a default, users cannot continue with the
machine request until they provide a value for the custom property.
f
Click the Save icon ().
Your blueprint is not finished. Do not navigate away from this page.
Configure Amazon AWS Blueprint Actions
Tenant administrators or business group managers use blueprint actions and entitlements to maintain
detailed control over provisioned machines.
Entitlements control which machine operations specific users can access. Blueprint actions control which
machine operations can be performed on machines provisioned from a blueprint. For example, if you
disable the option to reprovision machines created from a blueprint, then the option to reprovision a
machine created from the blueprint does not appear for any users. If you enable the reprovision machine
operation, then users who are entitled to reprovision machines can reprovision machines created from
this blueprint.
Note The options that appear on the Actions tab depend on your platform and any customizations
made to your vRealize Automation instance.
Prerequisites
Add Amazon AWS Blueprint Custom Properties.
Procedure
1Click the Actions tab.
2(Optional) Select the check boxes for each machine option to enable for machines provisioned from
this blueprint.
3Click OK.
Your blueprint is saved in draft state.
What to do next
Publish your blueprint to make it available as a catalog item. See Publish a Blueprint.
VMware, Inc. 68
IaaS Configuration for Cloud Platforms
Create a Basic Red Hat OpenStack Blueprint
Machine blueprints determine the attributes of the machine, the manner in which it is provisioned, and its
policy and management settings. A tenant administrator or business group manager creates a blueprint
for provisioning machines.
Prerequisites
Log in to the vRealize Automation console as a tenant administrator or business group manager.
Procedure
1Specify Basic Red Hat OpenStack Blueprint Information
Blueprint information settings control who can access a blueprint, how many machines they can
provision with it, and the daily cost.
2Specify Basic Red Hat OpenStack Blueprint Build Information
Build information settings determine how a machine is provisioned and control the resources
consumed by a machine provisioned from your blueprint.
3Add Basic Red Hat OpenStack Blueprint Custom Properties
Adding custom properties to a blueprint gives you detailed control over provisioned machines.
4Configure Basic Red Hat OpenStack Blueprint Actions
Use blueprint actions and entitlements together to maintain detailed control over provisioned
machines.
What to do next
The blueprint is not available as a catalog item until you publish it. See Publish a Blueprint.
Specify Basic Red Hat OpenStack Blueprint Information
Blueprint information settings control who can access a blueprint, how many machines they can provision
with it, and the daily cost.
Prerequisites
Log in to the vRealize Automation console as a tenant administrator or business group manager.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Select New Blueprint > Cloud > OpenStack.
3Enter a name and, optionally, a description.
4(Optional) Select the Master check box to allow users to copy your blueprint.
VMware, Inc. 69
IaaS Configuration for Cloud Platforms
5Select the Display location on request check box to prompt users to select a location when they
submit a machine request.
This option enables users to select a region into which to provision the requested machine.
6Select who can provision machines with this blueprint.
RolesWho Can Provision
If you are both a business group
manager and a tenant administrator
Business group managerSelect a business group from the Business group drop-down menu.
Tenant administratorYour blueprints are always shared. You cannot choose who can use them to
n
Select the Shared blueprint check box to allow the blueprint to be entitled to
users in any business group.
n
Deselect the Shared blueprint check box to create a local blueprint, and
select a business group from the Business group drop-down menu.
provision machines.
7(Optional) Select a reservation policy from the Reservation policy drop-down menu.
This option requires additional configuration by a fabric administrator to create a reservation policy.
8Select a machine prefix from the Machine prefix drop-down menu.
You can select Use group default to accept the default machine prefix business group for the user.
9(Optional) Enter a number in the Maximum per user text box to limit the number of machines that a
single user can provision with this blueprint.
10 Set the daily cost of the machine by typing the amount in the Cost (daily) text box.
Your blueprint is not finished. Do not navigate away from this page.
Specify Basic Red Hat OpenStack Blueprint Build Information
Build information settings determine how a machine is provisioned and control the resources consumed
by a machine provisioned from your blueprint.
Prerequisites
Specify Basic Red Hat OpenStack Blueprint Information.
Procedure
1Click the Build Information tab.
2Select whether machines provisioned from this blueprint are classified as Desktop or Server from the
Blueprint type drop-down menu.
This information is for record-keeping and licensing purposes only.
3Select CloudProvisioningWorkflow from the Provisioning workflow drop-down menu.
4Click the Browse icon next to the OpenStack image text box.
VMware, Inc. 70
IaaS Configuration for Cloud Platforms
5Select a virtual machine image from the list.
Important Ensure that you select an image that is appropriate for the workflow that you selected.
For example, only select kickstart images when you use the CloudLinuxKickstartWorkflow, and only
select WIM images when you use the CloudWIMImageWorkflow. Using an image with the wrong
workflow can result in a machine that appears to be successfully provisioned and ready to use when
it is actually waiting for input in the Red Hat OpenStack provider.
6Click OK.
7Select a key pair generation method from the Key pair drop-down menu.
OptionDescription
Not SpecifiedSelect to control key pair behavior at the reservation level rather than the
blueprint level.
Auto Generated per Business GroupEach machine provisioned in the same business group has the same key pair. If
you delete the business group, its key pair is also deleted.
Auto Generated per MachineEach machine has a unique key pair.
If you select Not Specified in both the reservation and the blueprint, machines provisioned from this
blueprint have no key pair.
8Select one or more Flavors check boxes to select one or more flavors that users can select from
when they submit a machine request.
Selecting one or more flavors updates values in the # CPUs, Memory, and Storage (GB) text boxes.
Review the minimum and maximum machine resource values and adjust your instance type
selections as desired.
9(Optional) Specify the lease settings for provisioned machines, or leave blank for no expiration date.
aEnter the minimum number of lease days in the Minimum text box.
If you only provide a minimum, this number becomes the value for all machines provisioned from
this blueprint.
b(Optional) Enter the maximum number of lease days in the Maximum text box to allow users to
select their own settings within the range that you provide.
Your blueprint is not finished. Do not navigate away from this page.
Add Basic Red Hat OpenStack Blueprint Custom Properties
Adding custom properties to a blueprint gives you detailed control over provisioned machines.
Prerequisites
Specify Basic Red Hat OpenStack Blueprint Build Information.
Procedure
1Click the Properties tab.
VMware, Inc. 71
IaaS Configuration for Cloud Platforms
2(Optional) Select one or more build profiles from the Build profiles menu.
Build profiles contain groups of custom properties. Fabric administrators can create build profiles.
3(Optional) Add any custom properties to your blueprint.
aClick New Property.
bEnter the custom property in the Name text box.
cEnter the value of the custom property in the Value text box.
d(Optional) Select the Encrypted check box to encrypt the custom property in the database.
e(Optional) Select the Prompt user check box to require the user to provide a value when they
request a machine.
If you choose to prompt users for a value, any value you provide for the custom property is
presented to them as the default. If you do not provide a default, users cannot continue with the
machine request until they provide a value for the custom property.
f
Click the Save icon ().
Your blueprint is not finished. Do not navigate away from this page.
Configure Basic Red Hat OpenStack Blueprint Actions
Use blueprint actions and entitlements together to maintain detailed control over provisioned machines.
Entitlements control which machine operations specific users can access. Blueprint actions control which
machine operations can be performed on machines provisioned from a blueprint. For example, if you
disable the option to reprovision machines created from a blueprint, then the option to reprovision a
machine created from the blueprint does not appear for any users. If you enable the reprovision machine
operation, then users who are entitled to reprovision machines can reprovision machines created from
this blueprint.
Note The options that appear on the Actions tab depend on your platform and any customizations
made to your vRealize Automation instance.
Prerequisites
Add Basic Red Hat OpenStack Blueprint Custom Properties.
Procedure
1Click the Actions tab.
2(Optional) Select the check boxes for each machine option to enable for machines provisioned from
this blueprint.
3Click OK.
Your blueprint is saved in draft state.
VMware, Inc. 72
IaaS Configuration for Cloud Platforms
What to do next
Publish your blueprint to make it available as a catalog item. See Publish a Blueprint.
Create a Red Hat OpenStack Blueprint for Linux Kickstart
Provisioning
You can provision a machine by booting from an ISO image, then using a kickstart or autoYaSt
configuration file and a Linux distribution image to install the operating system on the machine.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Gather the following information from your fabric administrator:
aThe name and location of the ISO image.
bFor vCenter Server integrations, the vCenter Server guest operating system version with which
vCenter Server is to create the machine.
c(Optional) For SCVMM integrations, the ISO, virtual hard disk, or hardware profile to attach to
provisioned machines.
Note Your fabric administrator might have provided this information in a build profile.
Procedure
1Specify Linux Kickstart Blueprint Information
Blueprint information settings control who can access a blueprint, how many machines they can
provision with it, and how long to archive a machine after the lease period is over.
2Specify Linux Kickstart Blueprint Build Information
The build information settings determine how a machine is provisioned.
3Add Required Properties to a Linux Kickstart Blueprint
There are a number of custom properties that are required for Linux Kickstart provisioning.
4Configure Linux Kickstart Blueprint Actions
Use blueprint actions and entitlements together to maintain detailed control over provisioned
machines.
What to do next
The blueprint is not available as a catalog item until you publish it. See Publish a Blueprint.
Specify Linux Kickstart Blueprint Information
Blueprint information settings control who can access a blueprint, how many machines they can provision
with it, and how long to archive a machine after the lease period is over.
VMware, Inc. 73
IaaS Configuration for Cloud Platforms
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Gather the following information from your fabric administrator:
aThe name and location of the ISO image.
bFor vCenter Server integrations, the vCenter Server guest operating system version with which
vCenter Server is to create the machine.
c(Optional) For SCVMM integrations, the ISO, virtual hard disk, or hardware profile to attach to
provisioned machines.
Note Your fabric administrator might have provided this information in a build profile.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Select New Blueprint > Cloud > OpenStack.
3Enter a name and, optionally, a description.
4(Optional) Select the Master check box to allow users to copy your blueprint.
5Select the Display location on request check box to prompt users to select a location when they
submit a machine request.
This option enables users to select a region into which to provision the requested machine.
6Select who can provision machines with this blueprint.
RolesWho Can Provision
If you are both a business group
manager and a tenant administrator
Business group managerSelect a business group from the Business group drop-down menu.
Tenant administratorYour blueprints are always shared. You cannot choose who can use them to
n
Select the Shared blueprint check box to allow the blueprint to be entitled to
users in any business group.
n
Deselect the Shared blueprint check box to create a local blueprint, and
select a business group from the Business group drop-down menu.
provision machines.
7(Optional) Select a reservation policy from the Reservation policy drop-down menu.
This option requires additional configuration by a fabric administrator to create a reservation policy.
8Select a machine prefix from the Machine prefix drop-down menu.
You can select Use group default to accept the default machine prefix business group for the user.
9(Optional) Enter a number in the Maximum per user text box to limit the number of machines that a
single user can provision with this blueprint.
10 Set the daily cost of the machine by typing the amount in the Cost (daily) text box.
Your blueprint is not finished. Do not navigate away from this page.
VMware, Inc. 74
IaaS Configuration for Cloud Platforms
Specify Linux Kickstart Blueprint Build Information
The build information settings determine how a machine is provisioned.
Prerequisites
Specify Linux Kickstart Blueprint Information.
Procedure
1Click the Build Information tab.
2Select whether machines provisioned from this blueprint are classified as Desktop or Server from the
Blueprint type drop-down menu.
This information is for record-keeping and licensing purposes only.
3Select CloudLinuxKickstartWorkflow from the Provisioning workflow drop-down menu.
4Click the Browse icon next to the OpenStack image text box.
5Select a virtual machine image from the list.
Important Ensure that you select an image that is appropriate for the workflow that you selected.
For example, only select kickstart images when you use the CloudLinuxKickstartWorkflow, and only
select WIM images when you use the CloudWIMImageWorkflow. Using an image with the wrong
workflow can result in a machine that appears to be successfully provisioned and ready to use when
it is actually waiting for input in the Red Hat OpenStack provider.
6Click OK.
7Select a key pair generation method from the Key pair drop-down menu.
OptionDescription
Not SpecifiedSelect to control key pair behavior at the reservation level rather than the
blueprint level.
Auto Generated per Business GroupEach machine provisioned in the same business group has the same key pair. If
you delete the business group, its key pair is also deleted.
Auto Generated per MachineEach machine has a unique key pair.
If you select Not Specified in both the reservation and the blueprint, machines provisioned from this
blueprint have no key pair.
8Select one or more Flavors check boxes to select one or more flavors that users can select from
when they submit a machine request.
Selecting one or more flavors updates values in the # CPUs, Memory, and Storage (GB) text boxes.
Review the minimum and maximum machine resource values and adjust your instance type
selections as desired.
VMware, Inc. 75
IaaS Configuration for Cloud Platforms
9(Optional) Specify the lease settings for provisioned machines, or leave blank for no expiration date.
aEnter the minimum number of lease days in the Minimum text box.
If you only provide a minimum, this number becomes the value for all machines provisioned from
this blueprint.
b(Optional) Enter the maximum number of lease days in the Maximum text box to allow users to
select their own settings within the range that you provide.
Your blueprint is not finished. Do not navigate away from this page.
Add Required Properties to a Linux Kickstart Blueprint
There are a number of custom properties that are required for Linux Kickstart provisioning.
Note If your fabric administrator creates a build profile that contains the required custom properties and
you include it in your blueprint, you do not need to individually add the required custom properties to the
blueprint.
For a list of commonly used custom properties for Linux Kickstart provisioning, see Custom Properties for
Linux Kickstart Blueprints.
Prerequisites
Specify Linux Kickstart Blueprint Build Information.
Procedure
1Click the Properties tab.
2(Optional) Select one or more build profiles from the Build profiles menu.
Build profiles contain groups of custom properties. Fabric administrators can create build profiles.
3Add the ISO name custom property.
aClick New Property.
bType Image.ISO.Name in the Name text box.
cType the name or location of the ISO image that your fabric administrator provided for you in the
Value text box.
OptionDescription
vCenter ServerThe path to the ISO, including the name. The value must use forward slashes.
Hyper-VThe full local path to the ISO file, including the file name.
XenServerThe name of the ISO file.
d(Optional) Select the Encrypted check box to encrypt the custom property in the database.
VMware, Inc. 76
IaaS Configuration for Cloud Platforms
e(Optional) Select the Prompt user check box to require the user to provide a value when they
request a machine.
If you choose to prompt users for a value, any value you provide for the custom property is
presented to them as the default. If you do not provide a default, users cannot continue with the
machine request until they provide a value for the custom property.
f
Click the Save icon ().
4Add the ISO location custom property.
This custom property is not required for Hyper-V integrations. The name and location are both
specified in the ISO name custom property.
aClick New Property.
bType Image.ISO.Location in the Name text box.
cType the location of the ISO image that your fabric administrator provided for you in the Value
text box.
d
Click the Save icon ().
Your blueprint is not finished. Do not navigate away from this page.
Custom Properties for Linux Kickstart Blueprints
vRealize Automation includes custom properties that you can use to provide additional controls for Linux
Kickstart blueprints.
Certain vRealize Automation custom properties are required to use with Linux Kickstart blueprints.
VMware, Inc. 77
IaaS Configuration for Cloud Platforms
Table 4‑2. Required Custom Properties for Linux Kickstart Blueprints
Custom PropertyDescription
VMware.VirtualCenter.OperatingSystem
Image.ISO.Location
Image.ISO.Name
Specifies the vCenter Server guest operating system version
(VirtualMachineGuestOsIdentifier) with which
vCenter Server creates the machine. This operating system
version must match the operating system version to be installed
on the provisioned machine. Administrators can create property
groups using one of several property sets, for example,
VMware[OS_Version]Properties, that are predefined to
include the correct VMware.VirtualCenter.OperatingSystem
values. This property is for virtual provisioning.
For related information, see the enumeration type
VirtualMachineGuestOsIdentifier in vSphere API/SDK
Documentation. For a list of currently accepted values, see the
VMware vCenter Server™ documentation.
Values for this property are case sensitive. Specifies the location
of the ISO image from which to boot, for example
http://192.168.2.100/site2/winpe.iso. The format of this value
depends on your platform. For details, see documentation
provided for your platform. This property is required for WIM-
based provisioning, Linux Kickstart and autoYaST provisioning,
and SCCM-based provisioning.
Values for this property are case sensitive. Specifies the name
of the ISO image from which to boot, for
example /ISO/Microsoft/WinPE.iso. The format of this value
depends on your platform. For details, see documentation
provided for your platform. This property is required for WIM-
based provisioning, Linux Kickstart and autoYaST provisioning,
and SCCM-based provisioning.
Image.ISO.UserName
Image.ISO.Password
Optional custom properties are available.
Specifies the user name to access the CIFS share in the format
username@domain. For Dell iDRAC integrations where the
image is located on a CIFS share that requires authentication to
access.
Specifies the password associated with the
Image.ISO.UserName property. For Dell iDRAC integrations
where the image is located on a CIFS share that requires
authentication to access.
VMware, Inc. 78
IaaS Configuration for Cloud Platforms
Table 4‑3. Optional Custom Properties for Linux Kickstart Blueprints
Custom PropertyDescription
VirtualMachine.Admin.ThinProvision
Machine.SSH
Determines whether thin provisioning is used on ESX compute
resources using local or iSCSI storage. Set to True to use thin
provisioning. Set to False to use standard provisioning. This
property is for virtual provisioning.
Set to True to enable the Connect Using SSH option, on the
vRealize Automation Items page, for Linux machines
provisioned from this blueprint. If set to True and the Connect
using RDP or SSH machine operation is enabled in the
blueprint, all Linux machines that are provisioned from the
blueprint display the Connect Using SSH option to entitled
users.
Configure Linux Kickstart Blueprint Actions
Use blueprint actions and entitlements together to maintain detailed control over provisioned machines.
Entitlements control which machine operations specific users can access. Blueprint actions control which
machine operations can be performed on machines provisioned from a blueprint. For example, if you
disable the option to reprovision machines created from a blueprint, then the option to reprovision a
machine created from the blueprint does not appear for any users. If you enable the reprovision machine
operation, then users who are entitled to reprovision machines can reprovision machines created from
this blueprint.
Note The options that appear on the Actions tab depend on your platform and any customizations
made to your vRealize Automation instance.
Prerequisites
Add Required Properties to a Linux Kickstart Blueprint.
Procedure
1Click the Actions tab.
2(Optional) Select the check boxes for each machine option to enable for machines provisioned from
this blueprint.
3Click OK.
Your blueprint is saved in draft state.
What to do next
Publish your blueprint to make it available as a catalog item. See Publish a Blueprint.
VMware, Inc. 79
IaaS Configuration for Cloud Platforms
Create an OpenStack Blueprint for WIM Provisioning
You can provision a machine by booting into a WinPE environment and then installing an operating
system using a Windows Imaging File Format (WIM) image of an existing Windows reference machine.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Gather the following information from your fabric administrator:
aThe name and location of the WinPE ISO image.
bThe name of the WIM file, the UNC path to the WIM file, and the index used to extract the desired
image from the WIM file.
cThe user name and password under which to map the WIM image path to a network drive on the
provisioned machine.
d(Optional) If you do not want to accept the default, K, the drive letter to which the WIM image path
is mapped on the provisioned machine.
eFor vCenter Server integrations, the vCenter Server guest operating system version with which
vCenter Server is to create the machine.
f(Optional) For SCVMM integrations, the ISO, virtual hard disk, or hardware profile to attach to
provisioned machines.
Note Your fabric administrator might have provided this information in a build profile.
Procedure
1Specify WIM Blueprint Information
Blueprint information settings control who can access a blueprint, how many machines they can
provision with it, and how long to archive a machine after the lease period is over.
2Specify WIM Blueprint Build Information
The build information settings determine how a machine is provisioned.
3Add Required Properties to a WIM Blueprint
There are a number of custom properties that are required for WIM provisioning.
4Configure WIM Blueprint Actions
Use blueprint actions and entitlements together to maintain detailed control over provisioned
machines.
What to do next
The blueprint is not available as a catalog item until you publish it. See Publish a Blueprint.
VMware, Inc. 80
IaaS Configuration for Cloud Platforms
Specify WIM Blueprint Information
Blueprint information settings control who can access a blueprint, how many machines they can provision
with it, and how long to archive a machine after the lease period is over.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Gather the following information from your fabric administrator:
aThe name and location of the WinPE ISO image.
bThe name of the WIM file, the UNC path to the WIM file, and the index used to extract the desired
image from the WIM file.
cThe user name and password under which to map the WIM image path to a network drive on the
provisioned machine.
d(Optional) If you do not want to accept the default, K, the drive letter to which the WIM image path
is mapped on the provisioned machine.
eFor vCenter Server integrations, the vCenter Server guest operating system version with which
vCenter Server is to create the machine.
f(Optional) For SCVMM integrations, the ISO, virtual hard disk, or hardware profile to attach to
provisioned machines.
Note Your fabric administrator might have provided this information in a build profile.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Select New Blueprint > Cloud > OpenStack.
3Enter a name and, optionally, a description.
4(Optional) Select the Master check box to allow users to copy your blueprint.
5(Optional) Select the Display location on request check box to prompt users to choose a datacenter
location when they submit a machine request.
This option requires additional configuration to add datacenter locations and associate compute
resources with those locations.
VMware, Inc. 81
IaaS Configuration for Cloud Platforms
6Select who can provision machines with this blueprint.
RolesWho Can Provision
If you are both a business group
manager and a tenant administrator
Business group managerSelect a business group from the Business group drop-down menu.
Tenant administratorYour blueprints are always shared. You cannot choose who can use them to
n
Select the Shared blueprint check box to allow the blueprint to be entitled to
users in any business group.
n
Deselect the Shared blueprint check box to create a local blueprint, and
select a business group from the Business group drop-down menu.
provision machines.
7(Optional) Select a reservation policy from the Reservation policy drop-down menu.
This option requires additional configuration by a fabric administrator to create a reservation policy.
8Select a machine prefix from the Machine prefix drop-down menu.
You can select Use group default to accept the default machine prefix business group for the user.
9(Optional) Enter a number in the Maximum per user text box to limit the number of machines that a
single user can provision with this blueprint.
10 Set the daily cost of the machine by typing the amount in the Cost (daily) text box.
Your blueprint is not finished. Do not navigate away from this page.
Specify WIM Blueprint Build Information
The build information settings determine how a machine is provisioned.
Prerequisites
Specify WIM Blueprint Information.
Procedure
1Click the Build Information tab.
2Select whether machines provisioned from this blueprint are classified as Desktop or Server from the
Blueprint type drop-down menu.
This information is for record-keeping and licensing purposes only.
3Select CloudWIMImageWorkflow from the Provisioning workflow drop-down menu.
4Click the Browse icon next to the OpenStack image text box.
VMware, Inc. 82
IaaS Configuration for Cloud Platforms
5Select a virtual machine image from the list.
Important Ensure that you select an image that is appropriate for the workflow that you selected.
For example, only select kickstart images when you use the CloudLinuxKickstartWorkflow, and only
select WIM images when you use the CloudWIMImageWorkflow. Using an image with the wrong
workflow can result in a machine that appears to be successfully provisioned and ready to use when
it is actually waiting for input in the Red Hat OpenStack provider.
6Click OK.
7Select a key pair generation method from the Key pair drop-down menu.
OptionDescription
Not SpecifiedSelect to control key pair behavior at the reservation level rather than the
blueprint level.
Auto Generated per Business GroupEach machine provisioned in the same business group has the same key pair. If
you delete the business group, its key pair is also deleted.
Auto Generated per MachineEach machine has a unique key pair.
If you select Not Specified in both the reservation and the blueprint, machines provisioned from this
blueprint have no key pair.
8Select one or more Flavors check boxes to select one or more flavors that users can select from
when they submit a machine request.
Selecting one or more flavors updates values in the # CPUs, Memory, and Storage (GB) text boxes.
Review the minimum and maximum machine resource values and adjust your instance type
selections as desired.
9(Optional) Specify the lease settings for provisioned machines, or leave blank for no expiration date.
aEnter the minimum number of lease days in the Minimum text box.
If you only provide a minimum, this number becomes the value for all machines provisioned from
this blueprint.
b(Optional) Enter the maximum number of lease days in the Maximum text box to allow users to
select their own settings within the range that you provide.
Your blueprint is not finished. Do not navigate away from this page.
Add Required Properties to a WIM Blueprint
There are a number of custom properties that are required for WIM provisioning.
Note If your fabric administrator creates a build profile that contains the required custom properties and
you include it in your blueprint, you do not need to individually add the required custom properties to the
blueprint.
For a list of custom properties commonly used with WIM provisioning, see Custom Properties for WIM
Blueprints.
VMware, Inc. 83
IaaS Configuration for Cloud Platforms
Prerequisites
Specify WIM Blueprint Build Information.
Procedure
1Click the Properties tab.
2(Optional) Select one or more build profiles from the Build profiles menu.
Build profiles contain groups of custom properties. Fabric administrators can create build profiles.
3Add the ISO name custom property.
aClick New Property.
bEnter Image.ISO.Name in the Name text box.
cEnter the location of the ISO image that your fabric administrator provided for you in the Value
text box.
The value of Image.ISO.Name is case sensitive.
OptionDescription
vCenter ServerThe path to the WinPE ISO, including the name. The value must use forward
slashes, for example: /MyISOs/Microsoft/MSDN/win2003.iso.
Hyper-VThe full local path to the WinPE ISO file, including the file name.
XenServerThe name of the WinPE ISO file.
d(Optional) Select the Encrypted check box to encrypt the custom property in the database.
e(Optional) Select the Prompt user check box to require the user to provide a value when they
request a machine.
If you choose to prompt users for a value, any value you provide for the custom property is
presented to them as the default. If you do not provide a default, users cannot continue with the
machine request until they provide a value for the custom property.
f
Click the Save icon (
).
4Add the remaining required custom properties for WIM provisioning.
OptionDescription
Image.ISO.Location
Image.WIM.Path
Image.WIM.Name
Image.WIM.Index
Enter the location of the ISO image that your fabric administrator provided for you
in the Value text box. This custom property is case sensitive. For Hyper-V
integrations, this custom property is not required because the name and location
are both specified in the ISO name custom property.
Enter the UNC path to the WIM file that your fabric administrator provided for you
in the Value text box.
Enter the name of the WIM file that your fabric administrator provided for you in
the Value text box.
Enter the index to be used to extract the desired image from the WIM file that
your fabric administrator provided for you in the Value text box.
VMware, Inc. 84
IaaS Configuration for Cloud Platforms
OptionDescription
Image.Network.User
Image.Network.Password
VirtualMachine.Admin.Password
Enter the user name under which to map the WIM image path (Image.WIM.Path)
to a network drive on the machine in the Value text box.
Enter the associated password for the network user (Image.Network.User) in
the Value text box.
Enter the password to use for the administrator account on the provisioned
machine.
Your blueprint is not finished. Do not navigate away from this page.
Custom Properties for WIM Blueprints
vRealize Automation includes custom properties that provide additional controls for WIM blueprints.
Certain vRealize Automation custom properties are required for WIM blueprints.
Table 4‑4. Required Custom Properties for WIM Blueprints
Custom PropertyDescription
Image.ISO.Location
Image.ISO.Name
Image.ISO.UserName
Image.ISO.Password
Image.Network.Letter
Values for this property are case sensitive. Specifies the location
of the ISO image from which to boot, for example
http://192.168.2.100/site2/winpe.iso. The format of this value
depends on your platform. For details, see documentation
provided for your platform. This property is required for WIM-
based provisioning, Linux Kickstart and autoYaST provisioning,
and SCCM-based provisioning.
Values for this property are case sensitive. Specifies the name
of the ISO image from which to boot, for
example /ISO/Microsoft/WinPE.iso. The format of this value
depends on your platform. For details, see documentation
provided for your platform. This property is required for WIM-
based provisioning, Linux Kickstart and autoYaST provisioning,
and SCCM-based provisioning.
Specifies the user name to access the CIFS share in the format
username@domain. For Dell iDRAC integrations where the
image is located on a CIFS share that requires authentication to
access.
Specifies the password associated with the
Image.ISO.UserName property. For Dell iDRAC integrations
where the image is located on a CIFS share that requires
authentication to access.
Specifies the drive letter to which the WIM image path is
mapped on the provisioned machine. The default value is K.
Image.WIM.Path
Image.WIM.Name
Image.WIM.Index
VMware, Inc. 85
Specifies the UNC path to the WIM file from which an image is
extracted during WIM-based provisioning. The path format
is \\server\share$ format, for example \\lab-ad\dfs$.
Specifies the name of the WIM file, for example win2k8.wim, as
located by the Image.WIM.Path property.
Specifies the index used to extract the correct image from the
WIM file.
IaaS Configuration for Cloud Platforms
Table 4‑4. Required Custom Properties for WIM Blueprints (Continued)
Custom PropertyDescription
Image.Network.User
Image.Network.Password
VMware.VirtualCenter.OperatingSystem
Specifies the user name with which to map the WIM image path
(Image.WIM.Path) to a network drive on the provisioned
machine. This is typically a domain account with access to the
network share.
Specifies the password associated with the
Image.Network.User property.
Specifies the vCenter Server guest operating system version
(VirtualMachineGuestOsIdentifier) with which
vCenter Server creates the machine. This operating system
version must match the operating system version to be installed
on the provisioned machine. Administrators can create property
groups using one of several property sets, for example,
VMware[OS_Version]Properties, that are predefined to
include the correct VMware.VirtualCenter.OperatingSystem
values. This property is for virtual provisioning.
For related information, see the enumeration type
VirtualMachineGuestOsIdentifier in vSphere API/SDK
Documentation. For a list of currently accepted values, see the
VMware vCenter Server™ documentation.
Optional custom properties are also available for WIM blueprints.
VMware, Inc. 86
IaaS Configuration for Cloud Platforms
Table 4‑5. Common Custom Properties for WIM Blueprints
Custom PropertyDescription
SysPrep.Section.Key
n
SysPrep.GuiUnattended.AdminPassword
n
SysPrep.GuiUnattended.EncryptedAdminPassword
n
SysPrep.GuiUnattended.TimeZone
Specifies information to be added to the SysPrep answer file on
machines during the WinPE stage of provisioning. Information
that already exists in the SysPrep answer file is overwritten by
these custom properties. Section represents the name of the
section of the SysPrep answer file, for example GuiUnattended
or UserData. Key represents a key name in the section. For
example, to set the time zone of a provisioned machine to West
Pacific Standard Time, define the custom property
GuiUnattended.UserData.TimeZone and set the value to 275.
For a full list of sections, keys, and accepted values, see the
System Preparation Utility for Windows documentation.
The following Section.Key combinations can be specified for
WIM-based provisioning:
n
GuiUnattended
n
AdminPassword
n
EncryptedAdminPassword
n
TimeZone
n
UserData
n
ProductKey
n
FullName
n
ComputerName
n
OrgName
n
Identification
n
DomainAdmin
n
DomainAdminPassword
n
JoinDomain
n
JoinWorkgroup
Sysprep.Identification.DomainAdmin
Sysprep.Identification.DomainAdminPassword
Sysprep.Identification.JoinDomain
Sysprep.Identification.JoinWorkgroup
SysPrep.UserData.ComputerName
SysPrep.UserData.FullName
SysPrep.UserData.OrgName
SysPrep.UserData.ProductKey
VirtualMachine.Admin.ThinProvision
Specifies a user name with administrator-level access to the
target domain in Active Directory. Do not include the user
domain in the credentials that you send to vCloud Director.
Specifies the password to associate with the
Sysprep.Identification.DomainAdmin property.
Specifies the name of the domain to join in Active Directory.
Specifies the name of the workgroup to join if not using a
domain.
Specifies a machine name, for example lab-client005.
Specifies the full name of a user.
Specifies the organization name of the user.
Specifies the Windows product key.
Determines whether thin provisioning is used on ESX compute
resources using local or iSCSI storage. Set to True to use thin
provisioning. Set to False to use standard provisioning. This
property is for virtual provisioning.
VMware, Inc. 87
IaaS Configuration for Cloud Platforms
Configure WIM Blueprint Actions
Use blueprint actions and entitlements together to maintain detailed control over provisioned machines.
Entitlements control which machine operations specific users can access. Blueprint actions control which
machine operations can be performed on machines provisioned from a blueprint. For example, if you
disable the option to reprovision machines created from a blueprint, then the option to reprovision a
machine created from the blueprint does not appear for any users. If you enable the reprovision machine
operation, then users who are entitled to reprovision machines can reprovision machines created from
this blueprint.
Note The options that appear on the Actions tab depend on your platform and any customizations
made to your vRealize Automation instance.
Prerequisites
Add Required Properties to a WIM Blueprint.
Procedure
1Click the Actions tab.
2(Optional) Select the check boxes for each machine option to enable for machines provisioned from
this blueprint.
3Click OK.
Your blueprint is saved in draft state.
What to do next
Publish your blueprint to make it available as a catalog item. See Publish a Blueprint.
Publish a Blueprint
Blueprints are saved in the draft state and must be manually published before you can configure them as
catalog items.
You need to publish a blueprint only once. Any changes you make to a published blueprint are
automatically reflected in the catalog.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Create a blueprint.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Point to the blueprint to publish and click Publish from the drop-down menu.
VMware, Inc. 88
IaaS Configuration for Cloud Platforms
3Click OK.
Your blueprint is now ready for tenant administrators, business group managers, and service architects to
associate it with a catalog service and entitle users to request it from the catalog.
What to do next
For information about how to configure and manage the catalog, see Tenant Administration.
VMware, Inc. 89
Configuring Advanced Blueprint
Settings5
Tenant administrators and business group managers can use custom properties and optional policies to
configure advanced blueprint settings such as reservation policies, Visual Basic scripts, and Active
Directory cleanup.
This chapter includes the following topics:
n
Reservation Policies
n
Configuring Network Settings
n
Enabling Visual Basic Scripts in Provisioning
n
Add Active Directory Cleanup to a Blueprint
n
Enabling Remote Desktop Connections
n
Enable Connections Using SSH
Reservation Policies
When a user requests a machine, it can be provisioned on any reservation of the appropriate type that
has sufficient capacity for the machine. You can apply a reservation policy to a blueprint to restrict the
machines provisioned from a that blueprint to a subset of available reservations.
Reservation policies provide an optional and helpful means of controlling how reservation requests are
processed. A reservation policy is often used to collect resources into groups for different service levels,
or to make a specific type of resource easily available for a particular purpose. The following scenarios
provide a few examples of possible uses for reservation policies:
n
To ensure that machines provisioned from a virtual blueprint are placed on reservations with storage
devices that support NetApp FlexClone
n
To restrict provisioning of cloud machines to a specific region containing a machine image that is
required for a specific blueprint
n
To restrict provisioning of Cisco UCS physical machines to reservations on endpoints on which the
selected service profile template and boot policy are available
n
As an additional means of using a Pay As You Go allocation model for vApps
You can add multiple reservations to a reservation policy, but a reservation can belong to only one policy.
You can assign a single reservation policy to more than one blueprint. A blueprint can have only one
reservation policy.
VMware, Inc.
90
IaaS Configuration for Cloud Platforms
A reservation policy can include reservations of different types, but only reservations that match the
blueprint type are considered when selecting a reservation for a particular request. For more information
about how reservations are selected for provisioning a machine, see IaaS Configuration for CloudPlatforms, IaaS Configuration for Physical Machines, or IaaS Configuration for Virtual Platforms.
Note If you have SDRS enabled on your platform, you can allow SDRS to load balance storage for
individual virtual machine disks, or all storage for the virtual machine. If you are working with SDRS
datastore clusters, conflicts can occur when you use reservation policies and storage reservation policies.
For example, if a standalone datastore or a datastore within an SDRS cluster is selected on one of the
reservations in a policy or storage policy, your virtual machine storage might be frozen instead of driven
by SDRS.
Add a Reservation Policy to a Blueprint
When tenant administrators and business group managers create a new blueprint, the option to add a
reservation policy appears. To add a reservation policy to an existing blueprint, you edit the blueprint.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Verify that a fabric administrator configured a reservation policy. See Configure a Reservation Policy.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Point to the blueprint to edit.
3
Click the Edit icon ().
4Select a Reservation policy from the Reservation policy drop-down menu.
5Click OK.
The machines provisioned from your blueprint are now restricted to the resources specified in your
reservation policy.
Configuring Network Settings
You can also specify aspects of network configuration such as static IP address assignment, the networks
to which machines should be attached, and other networking details.
By default, vCloud Automation Center uses DHCP to assign IP addresses to provisioned machines. For
cloud and virtual machines provisioned by using cloning or Linux kickstart/autoYaST provisioning, it is
possible to assign static IP addresses from a predefined range. Static IP address assignment can be
configured either at the reservation level or at the blueprint level.
Note This information does not apply to Amazon Web Services.
VMware, Inc. 91
IaaS Configuration for Cloud Platforms
Add a Network Profile for Static IP Assignment to a Blueprint
Tenant administrators and business group managers can configure static IP assignment at the blueprint
level.
Note This information does not apply to Amazon Web Services.
For a list of custom properties related to networking, see Custom Properties for Networking.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
A fabric administrator must Create a Network Profile for Static IP Address Assignment.
n
Create at least one blueprint that is eligible for static IP assignment. Static IP is supported with cloud
and virtual machines provisioned by cloning or Linux kickstart/autoYaST. For SCVMM, you can only
use static IP addresses if you are cloning Linux machines and you installed the guest agent on your
template.
n
For vSphere clone blueprints, you must specify a valid customization specification on the Build
Information tab of the blueprint.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Point to the blueprint for which you want to enable static IP assignment and click Edit.
3Click the Properties tab.
4Specify a network profile to use for assigning static IP addresses to a network device on machines
provisioned from this blueprint.
aClick New Property.
bType VirtualMachine.NetworkN.ProfileName in the Name text box, where N is the number of
the network device for which to enable static IP assignment.
For example: VirtualMachine.Network0.ProfileName.
cType the name of the network profile that defines the static IP addresses that can be assigned to
the network device.
d(Optional) Select the Prompt user check box to require the user to provide a value when they
request a machine.
If you choose to prompt users for a value, any value you provide for the custom property is
presented to them as the default. If you do not provide a default, users cannot continue with the
machine request until they provide a value for the custom property.
e
Click the Save icon (
).
Repeat this step to configure static IP assignment for additional network devices in this blueprint.
VMware, Inc. 92
IaaS Configuration for Cloud Platforms
5Click OK.
Custom Properties for Networking
The vRealize Automation custom properties for networking specify configuration for a specific network
device on a machine.
Note This information does not apply to Amazon Web Services.
Network assignments are performed during machine allocation. vRealize Automation retrieves network
information from the blueprint. If you want to assign more than one network, use the
VirtualMachine.NetworkN.Name custom property on your machine blueprint. If you do not provide
custom properties, allocation only assigns one network, which is picked using a round robin method in
conjunction with the selected reservation.
By default, a machine has one network device configured with the VirtualMachine.Network0.Name
property. You can configure additional network devices by using the VirtualMachine.NetworkN.Name
custom property.
The numbering of network properties must be sequential, starting with 0. For example, if you specify
custom properties for only VirtualMachine.Network0 and VirtualMachine.Network2, the properties
for VirtualMachine.Network2 are ignored, because the preceding network,
VirtualMachine.Network1, was not specified.
Table 5‑1. Custom Properties for Networking Configuration
Custom PropertyDescription
VirtualMachine.NetworkN.AddressSpecifies the IP address of network device N in a machine
provisioned with a static IP address.
VirtualMachine.NetworkN.MacAddressTypeIndicates whether the MAC address of network device N is
generated or user-defined (static). This property is available for
cloning.
The default value is generated. If the value is static, you must
also use VirtualMachine.NetworkN.MacAddress to specify
the MAC address.
VirtualMachine.NetworkN custom properties are designed to
be specific to individual blueprints and machines. When a
machine is requested, network and IP address allocation is
performed before the machine is assigned to a reservation.
Because blueprints are not guaranteed to be allocated to a
specific reservation, do not use this property on a reservation.
VMware, Inc. 93
IaaS Configuration for Cloud Platforms
Table 5‑1. Custom Properties for Networking Configuration (Continued)
Custom PropertyDescription
VirtualMachine.NetworkN.MacAddressSpecifies the MAC address of a network device N. This property
is available for cloning.
If the value of VirtualMachine.NetworkN.MacAddressType is
generated, this property contains the generated address.
If the value of VirtualMachine.Network.N.MacAddressType
is static, this property specifies the MAC address. For virtual
machines provisioned on ESX server hosts, the address must
be in the range specified by VMware. For details, see vSphere
documentation.
VirtualMachine.NetworkN custom properties are designed to
be specific to individual blueprints and machines. When a
machine is requested, network and IP address allocation is
performed before the machine is assigned to a reservation.
Because blueprints are not guaranteed to be allocated to a
specific reservation, do not use this property on a reservation.
VirtualMachine.NetworkN.NameSpecifies the name of the network to connect to, for example the
network device N to which a machine is attached.
By default, a network is assigned from the network paths
available on the reservation on which the machine is
provisioned.
You can ensure that a network device is connected to a specific
network by setting the value of this property to the name of a
network on an available reservation.
VirtualMachine.NetworkN custom properties are designed to
be specific to individual blueprints and machines. When a
machine is requested, network and IP address allocation is
performed before the machine is assigned to a reservation.
Because blueprints are not guaranteed to be allocated to a
specific reservation, do not use this property on a reservation.
You can add this property to a vApp (vCloud) blueprint or a vApp
(vCloud) Component blueprint.
VirtualMachine.NetworkN.PortIDSpecifies the port ID to use for network device N when using a
dvPort group with a vSphere distributed switch.
VirtualMachine.NetworkN custom properties are designed to
be specific to individual blueprints and machines. When a
machine is requested, network and IP address allocation is
performed before the machine is assigned to a reservation.
Because blueprints are not guaranteed to be allocated to a
specific reservation, do not use this property on a reservation.
VMware, Inc. 94
IaaS Configuration for Cloud Platforms
Table 5‑1. Custom Properties for Networking Configuration (Continued)
Custom PropertyDescription
VirtualMachine.NetworkN.ProfileNameSpecifies the name of a network profile from which to assign a
static IP address to network device Nor from which to obtain the
range of static IP addresses that can be assigned to network
device N of a cloned machine, where N=0 for the first device, 1
for the second, and so on.
If a network profile is specified in the network path in the
reservation on which the machine is provisioned, a static IP
address is assigned from that network profile. You can ensure
that a static IP address is assigned from a specific profile by
setting the value of this property to the name of a network
profile.
n
VirtualMachine.NetworkN.SubnetMask
n
VirtualMachine.NetworkN.Gateway
n
VirtualMachine.NetworkN.PrimaryDns
n
VirtualMachine.NetworkN.SecondaryDns
n
VirtualMachine.NetworkN.PrimaryWins
n
VirtualMachine.NetworkN.SecondaryWins
n
VirtualMachine.NetworkN.DnsSuffix
n
VirtualMachine.NetworkN.DnsSearchSuffixes
Appending a name allows you to create multiple versions of a
custom property. For example, the following properties might list
load balancing pools set up for general use and machines with
high, moderate, and low performance requirements:
n
VCNS.LoadBalancerEdgePool.Names
n
VCNS.LoadBalancerEdgePool.Names.moderate
n
VCNS.LoadBalancerEdgePool.Names.high
n
VCNS.LoadBalancerEdgePool.Names.low
Note In a multi-machine service, this custom property is
supported only for VM components with Routed Virtual Wire. It is
also not supported for pre-defined static IP addresses for VM
components in the context of a multi-machine blueprint.
Configures attributes of the network profile specified in
VirtualMachine.NetworkN.ProfileName.
VCNS.LoadBalancerEdgePool.Names.nameSpecifies the vCloud Networking and Security load balancing
pools to which the virtual machine is assigned during
provisioning. The virtual machine is assigned to all service ports
of all specified pools. The value is an edge/pool name or a list of
edge/pool names separated by commas. Names are case-
sensitive.
Appending a name allows you to create multiple versions of a
custom property. For example, the following properties might list
load balancing pools set up for general use and machines with
high, moderate, and low performance requirements:
n
VCNS.LoadBalancerEdgePool.Names
n
VCNS.LoadBalancerEdgePool.Names.moderate
n
VCNS.LoadBalancerEdgePool.Names.high
n
VCNS.LoadBalancerEdgePool.Names.low
Note In a multi-machine service, this custom property is
supported only for VM components with Routed Virtual Wire. It is
also not supported for pre-defined static IP addresses for VM
components in the context of a multi-machine blueprint.
VMware, Inc. 95
IaaS Configuration for Cloud Platforms
Table 5‑1. Custom Properties for Networking Configuration (Continued)
Custom PropertyDescription
VCNS.SecurityGroup.Names.nameSpecifies the vCloud Networking and Security security group or
groups to which the virtual machine is assigned during
provisioning. The value is a security group name or a list of
names separated by commas. Names are case-sensitive.
Appending a name allows you to create multiple versions of the
property, which can be used separately or in combination. For
example, the following properties can list security groups
intended for general use, for the sales force, and for support:
n
VCNS.SecurityGroup.Names
n
VCNS.SecurityGroup.Names.sales
n
VCNS.SecurityGroup.Names.support
VCNS.SecurityTag.Names.nameSpecifies the vCloud Networking and Security security tag or
tags to which the virtual machine is associated during
provisioning. The value is a security tag name or a list of names
separated by commas. Names are case-sensitive.
Appending a name allows you to create multiple versions of the
property, which can be used separately or in combination. For
example, the following properties can list security tags intended
for general use, for the sales force, and for support:
n
VCNS.SecurityTag.Names
n
VCNS.SecurityTag.Names.sales
n
VCNS.SecurityTag.Names.support
Enabling Visual Basic Scripts in Provisioning
Visual Basic scripts are run outside of vRealize Automation as additional steps in the machine life cycle
and can be used to update the custom property values of machines. Visual Basic scripts can be used with
any provisioning method.
For example, you could use a script to generate certificates or security tokens before provisioning and
then use those certificates and tokens in provisioning a machine.
Note This information does not apply to Amazon Web Services.
When executing a Visual Basic script, the EPI agent passes all machine custom properties as arguments
to the script. To return updated property values to vRealize Automation, you must place these properties
in a dictionary and call a function provided by vRealize Automation.
The sample Visual Basic script PrePostProvisioningExample.vbs is included in the Scripts
subdirectory of the EPI agent installation directory. This script contains a header to load all arguments into
a dictionary, a body in which you can include your functions, and a footer to return updated custom
properties to vRealize Automation.
The following is a high-level overview of the steps required to use Visual Basic scripts in provisioning:
1A system administrator installs and configures an EPI agent for Visual Basic scripts. See Installation
and Configuration.
VMware, Inc. 96
IaaS Configuration for Cloud Platforms
2A system administrator creates Visual Basic scripts and places them on the system where the EPI
agent is installed.
3Gather the following information for tenant administrators and business group managers for each
Visual Basic script:
n
The complete path to the Visual Basic script, including the filename and extension. For example,
%System Drive%Program Files (x86)\VMware\vCAC
Agents\EPI_Agents\Scripts\SendEmail.vbs.
Note A fabric administrator can create a build profile by using the property sets
ExternalPreProvisioningVbScript and ExternalPostProvisioningVbScript to provide this required
information. Doing so makes it easier for tenant administrators and business group managers to
include this information correctly in their blueprints.
4Tenant administrators and business group managers use custom properties in their blueprints to call
the Visual Basic scripts.
Call a Visual Basic Script from a Blueprint
Tenant administrators and business group managers can call Visual Basic scripts to run outside of
vRealize Automation as additional steps in the machine life cycle and to update custom property values of
machines.
Note If your fabric administrator creates a build profile that contains the required custom properties and
you include it in your blueprint, you do not need to individually add the required custom properties to the
blueprint.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Gather the following information from your fabric administrator for each Visual Basic script:
n
The complete path to the Visual Basic script, including the filename and extension. For example,
%System Drive%Program Files (x86)\VMware\vCAC
Agents\EPI_Agents\Scripts\SendEmail.vbs.
Note Your fabric administrator might have provided this information in a build profile.
n
Create at least one blueprint.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Point to the blueprint to which you want to add Visual Basic scripts and click Edit.
3Click the Properties tab.
4(Optional) Select one or more build profiles from the Build profiles menu.
Build profiles contain groups of custom properties. Fabric administrators can create build profiles.
VMware, Inc. 97
IaaS Configuration for Cloud Platforms
5Add the Visual Basic script custom properties.
aClick New Property.
bType the Visual Basic script custom property name in the Name text box.
OptionDescription
VbScript.PreProvisioning.NameRuns the Visual Basic script before a machine is provisioned.
VbScript.PostProvisioning.NameRuns the Visual Basic script after a machine is provisioned.
VbScript.UnProvisioning.NameRuns the Visual Basic script when a provisioned machine is destroyed.
cType the complete pathname, including filename and extension, to the Visual Basic script in the
Value text box.
For example, %SystemDrive%\Program Files (x86)\VMware\vCAC
Agents\EPI_Agent\Scripts\SendEmail.vbs.
d(Optional) Select the Encrypted check box to encrypt the custom property in the database.
e(Optional) Select the Prompt user check box to require the user to provide a value when they
request a machine.
If you choose to prompt users for a value, any value you provide for the custom property is
presented to them as the default. If you do not provide a default, users cannot continue with the
machine request until they provide a value for the custom property.
f
Click the Save icon ().
6Repeat to add multiple Visual Basic scripts to your blueprint.
7Click OK.
Add Active Directory Cleanup to a Blueprint
Tenant administrators and business group managers configure the Active Directory Cleanup Plugin by
using a set of custom properties to specify actions to take in Active Directory when a machine is deleted
from a hypervisor.
Note If your fabric administrator creates a build profile that contains the required custom properties and
you include it in your blueprint, you do not need to individually add the required custom properties to the
blueprint.
Prerequisites
Note This information does not apply to Amazon Web Services.
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Gather the following information from your fabric administrator:
n
An Active Directory account user name and password with sufficient rights to delete, disable,
rename, or move AD accounts. The user name must be in domain\username format.
VMware, Inc. 98
IaaS Configuration for Cloud Platforms
n
(Optional) The name of the OU to which to move destroyed machines.
n
(Optional) The prefix to attach to destroyed machines.
Note Your fabric administrator might have provided this information in a build profile.
n
Create at least one blueprint.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Point to the blueprint to which you want to add the Active Directory Cleanup Plugin and click Edit.
3Click the Properties tab.
4(Optional) Select one or more build profiles from the Build profiles menu.
Build profiles contain groups of custom properties. Fabric administrators can create build profiles.
5Enable the Active Directory Cleanup Plugin.
aClick New Property.
bType Plugin.AdMachineCleanup.Execute in the Name text box.
cType true in the Value text box.
d(Optional) Select the Encrypted check box to encrypt the custom property in the database.
e(Optional) Select the Prompt user check box to require the user to provide a value when they
request a machine.
If you choose to prompt users for a value, any value you provide for the custom property is
presented to them as the default. If you do not provide a default, users cannot continue with the
machine request until they provide a value for the custom property.
f
Click the Save icon (
).
6Add the remaining Active Directory Cleanup Plugin custom properties.
OptionDescription and Value
Plugin.AdMachineCleanup.UserName
Plugin.AdMachineCleanup.Password
Plugin.AdMachineCleanup.Delete
Plugin.AdMachineCleanup.MoveToOu
Plugin.AdMachineCleanup.RenamePre
fix
Type the Active Directory account user name in the Value text box. This user
must have sufficient privileges to delete, disable, move, and rename Active
Directory accounts. The user name must be in the format domain\username.
Type the password for the Active Directory account user name in the Value text
box.
Set to True to delete the accounts of destroyed machines, instead of disabling
them.
Moves the account of destroyed machines to a new Active Directory
organizational unit. The value is the organization unit to which you are moving the
account. This value must be in ou=OU, dc=dc format, for example
ou=trash,cn=computers,dc=lab,dc=local.
Renames the accounts of destroyed machines by adding a prefix. The value is
the prefix string to prepend, for example destroyed_.
VMware, Inc. 99
IaaS Configuration for Cloud Platforms
7Click OK.
Enabling Remote Desktop Connections
A system administrator can create a custom remote desktop protocol file that tenant administrators and
business group managers use in blueprints to configure RDP settings.
The following high-level overview is the sequence of tasks required to enable machine users to connect
using RDP.
1A system administrator creates a custom RDP file and places it in the Website\Rdp subdirectory of
the vRealize Automation installation directory. Provide fabric administrators, tenant administrators,
and business group managers with the full pathname for the custom RDP file so that it can be
included in blueprints.
2(Optional) A fabric administrator creates a build profile using the property set
RemoteDesktopProtocolProperties to compile RDP custom properties and values for tenant
administrators and business group managers to include in their blueprints.
3A tenant administrator or business group manager adds the RDP custom properties to a blueprint to
configure the RDP settings of machines provisioned from the blueprint.
4A tenant administrator or business group manager enables the Connect using RDP or SSH option in
a blueprint.
5A tenant administrator or business group manager entitles users or groups to use the Connect using
RDP or SSH option. See Tenant Administration.
Configure Connections Using RDP
Tenant administrators and business group managers can use custom properties to configure RDP
settings.
Note If your fabric administrator creates a build profile that contains the required custom properties and
you include it in your blueprint, you do not need to individually add the required custom properties to the
blueprint.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Create at least one blueprint.
Procedure
1Select Infrastructure > Blueprints > Blueprints.
2Point to the blueprint to change and click Edit.
3Click the Properties tab.
4(Optional) Select one or more build profiles from the Build profiles menu.
Build profiles contain groups of custom properties. Fabric administrators can create build profiles.
VMware, Inc. 100
Loading...
+ hidden pages
You need points to download manuals.
1 point = 1 manual.
You can buy points or you can get point for every manual you upload.