VMware Hands-on Labs - HOL-SDC-1321


Lab Overview - HOL-SDC-1321

HOL-SDC-1321 - vCloud Automation Center 6 from A to Z


This lab will demonstrate the ability to use vCloud Automation Center 6 to rapidly deploy and manage services. It covers features of vCloud Automation Center 6, including use cases from the perspective of both the end-user (consumer) and the administrators of ITaaS, exploration of the integration between vCloud Automation Center and ITBM, and development of new service offerings through vCloud Automation Center 6's Advanced Service Designer.

This lab is broken up into 4 individual use case modules with varying lengths. Use the "Modules" list to determine which use case you want to complete. You may choose to complete any or all modules, keeping in mind you have 90 minutes available per session.

Modules do not depend on each other, so you can take them in any order. Use the "Table of Contents" button in the menu bar for quick access to the module content.


 

Modules

 

Module 1 Overview
This lab will demonstrate the ability to use vCloud Automation Center to rapidly deploy Private and Hybrid Clouds across complex environments. The lab will cover features of vCloud Automation Center, including use cases from the perspective of both the end-user (consumer) and the administrators of the solution. The initial use cases are executed by end-users who need to request and manage their IT resources (simplifying the machine/VM provisioning) through an easy to use self-service portal. Additional use cases are executed by vCloud Automation Center administrators who configure organizational governance policies, and are responsible for the ongoing lifecycle management of the cloud infrastructure resources including resource reclamation, capacity planning and chargeback.
You will need about 75 minutes to complete the module.

Module 2 Overview
This lab will demonstrate the ability to use vCloud Automation Center's new Advanced Service Designer to rapidly add catalog items that do not necessarily create virtual infrastructure. The lab will cover features of vCloud Automation Center, including use cases from the perspective of both the end-user (consumer) and the administrators of the solution. The initial use cases are executed by the Tenant Administrator who needs to Managers to request the creation of a user in Active Directory. Additional use cases are executed by the vCloud Automation Center Tenant Administrator who needs to be enable users to run custom Resource Actions on an existing VM.
You will need about 30 minutes to complete the module.

Module 3 Overview
This lab will demonstrate the ability to use IT Business Management Standard with vCloud Automation Center to provide accurate cost transparency to consumers and IT management for your virtual infrastructure
You will need about 45 minutes to complete the module.

Module 4 Overview
This lab will demonstrate the ability to use the Application Provisioning features of vCloud Automation Center Enterprise to rapidly deploy applications from the same central catalog that enables IaaS, DaaS, and XaaS services. The lab will cover features of Application Director, including use cases from the perspective of both the end-user (consumer) and the administrators of the solution. The initial use cases are executed by administrators that are publishing their application blueprints through an easy to use self-service portal. Additional use cases are executed by vCloud Automation Center end users that are requesting application services.
You will need about 30 minutes to complete the module.

 

Module 1 - Enable Hybrid Cloud Automation & Governance with vCloud Automation Center 6

Overview


This lab will demonstrate the ability to use vCloud Automation Center to rapidly deploy Private and Hybrid Clouds across complex environments. The lab will cover features of vCloud Automation Center, including use cases from the perspective of both the end-user (consumer) and the administrators of the solution. The initial use cases are executed by end-users who need to request and manage their IT resources (simplifying the machine/VM provisioning) through an easy to use self-service portal. Additional use cases are executed by vCloud Automation Center administrators who configure organizational governance policies, and are responsible for the ongoing lifecycle management of the cloud infrastructure resources including resource reclamation, capacity planning and chargeback.

Lab Captains:

Zack Kielich, Jim Dewitt


Introduction to Scenario


This area will describe and introduce the environment and use cases we will be exploring. Please note: it can take some time for all of the components and services contained within this lab to fully start. You may need to wait a full 10 minutes before you can access the system. Please use this time to read the introduction and any prep work.


 

Getting to Know the Lab Environment

This lesson is a key starting point for the rest of the Lab module, do not skip it or lessons later on may not work. The vCloud Automation Center Lab highlights what is possible when a number of exciting technologies are deployed into a seamlessly integrated solution. To ensure you get the most out of this lab, we are going to take some time to review the key components.

This lab will start by taking the participant through an overview of the vCloud Automation Center. Participants are then walked through the different use case scenarios. This starts with the consumer self-service experience utilizing the easy-to-use Self-Service Portal. We'll then explore how administrators define policy and control, followed by the modified consumer experience based on the policy changes.

This lab is intended for Cloud administrators looking to help enterprise IT overcome the cloud management challenges of today

 

 

Control Center

 

You should see the ControlCenter Desktop, when you first log into the Lab.

Any point during this lab you can verify that you are on the Control Center Desktop by examining the background wallpaper.

 

 

Applications Used For This Lab

 

Although Internet Explorer and Chrome are supported by vCloud Automation Center, for continuity we will be using only Firefox to connect to the vCAC portal. Please read through the rest of the introduction prior to launching Firefox and logging in. This will give all of the lab VMs and services time to properly start.

  1. Note: There is a shortcut in the Windows taskbar for Firefox that will only be visible if you are logged into the Control Center as Administrator.
  2. When you open Firefox later in the lab, you'll find links in the bookmarks toolbar for the various components we'll need for the lab. The site we'll be primarily utilizing is vCAC's portal for the Nephosoft Tenant. The link is at the far left of the toolbar. Firefox is configured with the Nephosoft vCAC tenant portal as the home page.

Now that vCAC 6.0 is fully integrated with Single Sign-On, you'll be first prompted for credentials by the vCenter SSO components and then redirected to the vCAC portal.

 

 

Introduction to Fictional Company: Nephosoft

 

As you work through the lab's use cases, you'll be assuming roles within a fictional company, Nephosoft, and addressing their business and IT challenges.

Nephosoft is a multi-national software company that has expanded from a niche market of developing manufacturing and logistics integration software to an enterprise application hosting firm. Nephosoft recently acquired Code Nebulous, a visionary e-commerce and security application company, with a plan to leverage Code Nebulous unique (proprietary) application and existing cloud-present customer base, bringing them to the next level.

As the Nephosoft IT team work to integrate the IT infrastructure of Code Nebulous into Nephosoft's virtual datacenters, they have identified the need for engineering and QE staff from both organizations to request and manage their own development and testing environments. The engineering teams have implemented an agile development methodology, which requires that the quality engineering team stand up new testing environments at least once per week, for each of the Nephosoft and Code Nebulous products.

Nephosoft IT already use VMware tools within their organization to manage the vSphere infrastructure used by the engineering and QE teams, so the necessary catalogs of templates for the most commonly requested engineering environments have already been configured. On the other hand, Code Nebulous' existing infrastructure utilizes primarily public cloud resources through Amazon Web Services (AWS) for all test/dev environments. Nephosoft IT is looking to incorporate Code Nebulous' infrastructure into their management while maintaining a single pane of glass view over the entire infrastructure. The IT Manager has been struggling to find a management solution that provides heterogeneous platform support and allows him to maintain control over access to those various resources.

 

 

Nephosoft Fundamental IT Challenge

In order to support self-service for the engineering and QE teams while leveraging existing infrastructure from both organizations and retaining the necessary controls, the Nephosoft IT leadership team has decided to implement VMware's next generation cloud management solution.

 

 

Introducing vCloud Automation Center

VMware's cloud automation and management solutions empower enterprise IT to create highly personalized and scalable private, public, and desktop cloud services in days from existing systems and processes. These capabilities help customers realize the fastest time-to-cloud value, unparalleled IT efficiency, and enable them to respond to market demands very quickly and economically.

Key Technology and Products
VMware vCloud Automation Center helps companies accelerate the deployment of business relevant cloud services, across multi-vendor virtual and physical infrastructures in private and public clouds. vCloud Automation Center enables configurable self-service provisioning and full life-cycle management of cloud services that comply with established business policies. It provides a secure portal where authorized administrators, developers, or business users can request new IT services and manage existing computer resources from predefined, user-specific menus.

The focus of this lab session will be on vCloud Automation Center.

 

 

Overview/Benefits

VMware helps enterprise IT overcome cloud management challenges with the following differentiators:

 

 

Architecture Concepts

VMware vCloud Automation Center is comprised of five modules: Unified Catalog, Infrastructure as a Service (IaaS), Application Provisioning (PaaS), Anything as a Service (XaaS), and Business Management. Together, these modules provide an enterprise-wide system for provisioning machines and for comprehensively managing the machine life cycle from user request and administrative approval, through decommissioning and resource reclamation. These capabilities dramatically improve resource cost control and management. Built-in extensibility features also make vCloud Automation Center a highly flexible way for altering machine configurations as needed and integrating machine provisioning and management with other enterprise-critical systems. Within vCloud Automation Center, the basic elements include:

The basic elements required for the lab include:

 

 

Compute Resource

An object representing a host, host cluster or pool within a virtualization platform, cloud capacity for public cloud services or physical servers for bare metal deployment. Machines requested by provisioning group members are provisioned on compute resources. vCloud Automation Center regularly collects information about known compute resources and the machines provisioned on them.

 

 

Fabric Groups

Compute resources are organized into Fabric Groups and managed by Fabric Group Administrators. Fabric Groups are independent of Business Groups.

 

 

Business Groups

A collection of machine consumers often corresponding to a line of business, department or other organizational unit. To request machines, a vCloud Automation Center user must belong to at least one Business Group.

 

 

Resource Reservations

 

A reservation is a share of one "Compute Resource's" resources - memory, CPU and storage reserved for use by a particular provisioning group in provisioning machines. For physical resources, a reservation consists of a collection of physical machines.

 

 

Services

Services are a catalog item type that allow administrators to classify catalog items so that they are able to be found and requested easily by end users.

 

 

Logical Topology

The lab environment was constructed using a simple deployment configuration where primary catalog and XaaS capabilities are provided by a virtual appliance and all IaaS system components were installed on a single, separate virtual machine. Application architecture and blueprinting functionality is provided to our tenant Nephosoft on a third appliance. This is a typical architecture that many companies use to deploy a production pilot or limited scale production implementation up to 2,000 virtual machines. In this configuration, the self-service portal can be accessed through a web interface from any remote device. vCloud Automation Center will need to interact with the management interfaces of virtual, physical, or public cloud resources that it is managing. These interactions may also be remote.

As configurations grow, or as the cloud becomes an essential component of an organizations core infrastructure, IT will look to distribute vCloud Automation Center components for greater availability and scalability.

 

 

Lab Setup

Objective
To demonstrate how vCloud Automation Center can be used to transform a multi-vendor platform into a private cloud, we've pre-configured a live system running the vCloud Automation Center platform. The initial use cases are executed by End Users that will be requesting new services and managing their existing machines. Other use cases are executed by Administrators.

Persona

Password for all users is: VMware1!

NOTE: Passwords are CASE SENSITIVE; User IDs are NOT case sensitive.

 

 

Preconditions

Virtual: VMware vSphere

Cloud: vCloud Hybrid Services, Amazon Web Services

 

Note: Although deployment and management of physical servers (bare metal) as well as provisioning to other hypervisors (Hyper-V, and KVM) is supported by the vCAC solution, it is not demonstrated in this lab.

Please note: If it has not been at least 10 minutes since you started this lab DO NOT CONTINUE. Please wait a full 10 minutes before continuing into the system

 

 

Foreign Keyboards

 

If you have a foreign keyboard, there is a chance that you will have difficultly finding certain keys.

To work around this you can use the onscreen keyboard by clicking on the quick-launch shortcut pinned to the taskbar of the Control Center - or by going to Start> Programs> Accessories> Ease of Access> On-Screen Keyboard

 

End user self-service portal


Please note: that if it has not been at least 10 minutes since you started this lab DO NOT CONTINUE. Please wait a full 10 minutes from the time the lab was provisioned to start.


 

Self Service Portal

Let's explore the consumer experience by logging onto the self-service portal as a Quality Engineer that has been with Nephosoft for some time.

 

 

Launching the Portal

 

To logon to the vCAC portal:

  1. Launch the FireFox browser from the taskbar. The home page for Firefox is set to the Nephosoft tenant poral and you'll be prompted by SSO for authentication.
  2. If the vCAC portal does not appear, or if navigating from another site, click the vCAC Portal link in the bookmark toolbar

 

 

Logging into the Portal as NephQEUser

 

Note: During the lab, if you need to return to the login screen, press the vCAC shortcut in the Firefox toolbar. To log in:

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter nephqeuser@nephosoft.com as the username
  3. Enter VMware1! for the password.
  4. Press the Login Button

Passwords for all users will be the same: VMware1!

 

 

Self Service Portal

 

The self service portal is the jumping off point to all of the services your organization offers to you. From here, you can see that by accessing the tabs at the top of the screen, you can:

 

 

Home Tab

 

You are brought to the Home screen for the current end user as denoted by (1). This screen is configurable on a per user basis by adding, removing, or rearranging portlets. The currently added portlets are:

 

 

Rearranging Portlets

 

  1. Click the Edit button at the top right of the screen and choose Change Layout from the drop down list
  2. Choose the second option under the "2 Column" list
  3. Press submit

 

 

Exploring Additional Portlets

 

  1. Click the Edit button at the top right of the screen and choose Add Portlets from the drop down list
  2. Review the list of portlets available. Click Add for the My Recent Requests portlet to add it to our Home screen.
  3. Press Close

Once back on the home screen, you can drag and drop the portlets by clicking and holding onto the grey title bar at the top of the portlet.

 

 

Begin a New Request

 

Lets request a new virtual machine. Start by clicking the Catalog tab.

 

 

Service Types

 

You are immediately brought to the "All Services" type. We will be first be focusing on IaaS provisioning.

  1. Click the service called Development Infrastructure

The user, NephQEUser, has been given access to five (5) blueprints. Each Blueprint represents a separate machine that the user can request and manage. The Blueprint describes the entire life cycle for the request.

Lets choose a blueprint from the list of Development Infrastructure services.

2. Select: Request on the Resource Manager v3.1 catalog item

*Note: Initial screens for the request form may take a minute to populate due to the startup of services and reduced resource allocation for lab VMs . Subsequent infrastructure tasks should be noticeably faster.

 

 

Complete New Machine Request Form

 

The New Request form will appear, displaying details and form fields and restrictions as configured in the blueprint. Note that at the top right of the screen a cost appears. This cost is being provided to us by our Business Management system, which is part of vCAC 6. You can find out more about this product in other labs. As you change the lease duration on the request, the lease cost will be updated to reflect the total financial impact.

Step 1

Fill in the Request New Machine form as follows (you may need to scroll down to access some fields):

Step 2

 

 

Submission Success

 

Once the request is successfully submitted you'll receive a verification

  1. Click OK to return to the catalog.

 

 

Requests Screen

 

Shortly thereafter, you'll be able to see the virtual machine request and it's status in the Requests tab. The tab will show the request state as it moves through the provisioning process.

  1. Click the Requests tab in the portal
  2. Press the Refresh button to refresh the status.
  3. Monitor the progress until Status changes to Successful

 

 

Items Screen

 

Once the request has been completed we'll be able to view the new virtual machine under Items.

  1. Click the Items tab within the portal
  2. Note the addition of our newly provisioned machine

 

 

Ongoing Management of Existing Resources

Entitlement policies control ongoing management functions each user is allowed to perform against their machines. Ongoing management functions include the following operations:

Depending upon the entitlement policies, users can also modify policies of public cloud machines. Examples are elastic block storage, elastic load balancers, and security groups.

 

 

Extending the Lease

 

For this lab we'll demonstrate resource actions by extending the lease of one of new virtual machine. If you are not in the Items tab, navigate to Items at the top of the page.

 

 

Select Action for Machine

 

  1. Click the button in the Actions column for the new ResourceMgr-004 machine
  2. From the list that appears, select Change Lease

 

 

Extend Lease

 

A new window will appear asking for parameters around the Lease Extension. Complete the form as follows:

  1. Expiration Date: Set to: 1st of next calendar month (using US date format - mm/dd/yyyy)
  2. Enter 12:00am in the time field
  3. Select Submit

 

 

 

Action Submitted

 

Administrators given the rights to define entitlements are able to determine what end users like NephQEUser are able to do with their machines. Some users may only be able to connect to their machine while other users, like developers, may be given more control and allowed to perform actions such as reboots, reconfigurations, or even snapshots. Approvals can be required selectively to these actions based on group. As there is not currently an approval policy defined for this resource action and user, the lease change will take effect immediately. We'll explore approval policies in another module.

Click OK to return to the Items Tab

You can click View Details on the Action menu for the new machine to verify the new lease date and associated cost increase over the life of the lease.

 

Explore How Administrators Define Policy and Control


In the next part of the exercise we are going to look at how vCloud Automation Center Administrators define policies and controls over services.


 

Nephosoft IT to Incorporate Nebulous Resources

Since the vCloud Automation Center solution is platform agnostic, incorporating the Code Nebulous infrastructure is a seamless process. This Chapter will walk you through some of the extensive management capabilities within the solution.

 

 

Configuring Fabric Groups

vCloud Automation Center has a multi-tier organizational grouping capability. Each instance may have one or more Fabric Groups, each of which can contain one or more Business Groups. A Fabric Group is the top-level organizational grouping. It contains virtual, physical, and cloud resources that enterprise administrators will reserve for the different Business Groups under their control.

A Fabric Group has one or more administrators who reserve a portion of the Fabric Group's resources for each Business Group. Nephosoft IT will first add the Code Nebulous group as a new Fabric Group within the organization.

As described earlier, Code Nebulous uses a different platform for their QE and Test teams. As we integrate Code Nebulous into the solution, we will start to leverage the infrastructure that Code Nebulous was previously using - VMware's vCloud Hybrid Service (vCHS). vCHS is a secure infrastructure-as-a-service cloud owned and operated by VMware, built on the trusted foundation of vSphere. The service supports existing workloads and new application development, giving IT administrators and architects a common platform for seamlessly extending existing data centers to the cloud by leveraging the same tools and processes they use today. Because vCloud Automation Center now supports vCHS as a cloud endpoint (as well as cloud services from Amazon EC2 and OpenStack), we can easily extend the governance models and management policies of Nephosoft's vCAC implementation to Code Nebulous' platform of choice.

Creating Fabric Groups is the functionality of the Tenant Admin (CloudAdmin in the case of Nephosoft). This user has the highest level access to the system. We will log in as the CloudAdmin to complete these next few tasks.

 

 

Ensure You Are Logged Out from vCAC

 

If you are still logged into vCAC from a previous lab section, please log out using the Logout button on the top right of the screen

 

 

Log into vCloud Automation Center as CloudAdmin

 

While in Firefox, click the vCAC Portal shortcut in the browser toolbar.

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter cloudadmin@nephosoft.com as the user name
  3. Enter VMware1! for the password.
  4. Press the Login Button

 

 

Access the Goals Toolbar

 

A new feature in vCAC 6 is the built-in "Goals" toolbar that helps navigate you to the appropriate screens and in the correct order of configuration. To expand the Goals toolbar, click the >> button on the far left side of the screen. Note that many of the common administrative tasks are listed for you here to easily choose from.

 

 

Create a New Fabric Group

 

Because we have already configured the endpoints for you, we don't need to complete that step in the Fabric Configuration process. We do need to define our a new Fabric Group, however.

  1. In the Goals toolbar, navigate to the My Goals menu root if that is not already the current context.
  2. Click Fabric Configuration to move into that process menu
  3. Click Create Fabric Groups to jump to the Fabric Group management window.
  4. When the Fabric Group page appears, notice that "Nephosoft" is currently the only Fabric Group that exists. We will now add Code Nebulous as a second Fabric Group. Click the (+) New Fabric Group on the Fabric Groups title bar.

Press the << button to hide the Goals toolbar. This gives us more screen real estate to work with when constrained by the lower screen resolution of the lab desktop.

 

 

Complete New Fabric Group Form

 

The New Fabric Group page appears. Fill in the New Fabric Group form as follows:

Step 1:

Step 2:

 

 

Selecting Fabric Administrators

 

  1. In the Fabric administrators: field , type in the first User Name from the list below.
  2. Press <ENTER> or click on the resolved name to commit and add the User Name to the list.
  3. Repeat this process for the second account. You should end up with both accounts in the Fabric administrators list.

User Names:

IMPORTANT! Press <Enter> or click on the resolved name after typing each user name to validate the account.

Once these fields are entered, continue to the next step before hitting OK on the form.

 

 

Finish the New Fabric Group Form

 

  1. Compute Resources - These are the target hosts for the group. Select: vCloudAutomation. You will likely need to scroll to the right and then scroll down within the Compute resources frame to clearly see this Compute Resource.
  2. Click OK and the Fabric Group is created.

vCloudAutomation is the name of the organization within vCHS that Code Nebulous has access to. It is displayed here as it was preconfigured as an endpoint for this lab. We have just created a new Fabric Group for Code Nebulous and have allocated this vCHS infrastructure for its use.

 

 

Create a New Business Group

Under each Fabric Group, there are many Business Groups. These are functional groups within an organization that will later get entitlements to service catalog items assigned to them.

It's the role of the Tenant Admin to create IaaS Business Groups, therefore we will remain logged in as the CloudAdmin user for these steps.

 

 

Navigate to Business Groups

 

Once again, press the >> button to open the Goals toolbar. Business Group configuration is done from the same area as Fabric Group management, but lets continue to use My Goals to familiarize ourselves with the tool and the full sequence of configuration. After creating a Fabric Group, the next step in administration would be to create a Machine Prefix. This has already been completed for you, so we're heading straight to Create Business Groups.

  1. Open the Goals toolbar. Click on the >> button.
  2. Select Create Business Groups under My Goals > Fabric Configuration
  3. The Business Groups screen appears

Press the << button to hide the Goals toolbar

 

 

Add New Business Group

 

Click (+) New Business Group on the Business Groups title bar.

The New Business Group form appears.

 

 

Complete the New Business Group Form

 

Step 1 - Fill in the New Business Group form:

Step 2:

 

 

Selecting Default Machine Prefix

 

After clicking on the Select Machine Prefix field, the above dialog will be displayed.

  1. Highlight by clicking row for: CodeNeb-QE-
  2. Click OK

 

 

Finish Completing the New Business Group form

 

Step 1 - Complete remaining portion of the New Business Group form:

Scroll down and complete the following form fields:

IMPORTANT! Press <Enter> or click on the resolved name after typing each user name to validate the account.

IMPORTANT! Press <Enter> or click on the resolved name after typing the user name to validate the account.

Step 2:

The Business Group is created and we have now created a new business group for the Code Nebulous QE team.

 

 

Reserving Resources For A Business Group

From the Fabric Group's allocation of resources, the Fabric Administrator reserves resources for different Business Groups. Resources can be reallocated dynamically to meet changing business needs. Reservation policies allow Business Group resources to be further sub-grouped to define different services tiers or types of resources.

A compute resource is an object that represents a host, host cluster, or pool within a virtualization platform. The virtual machines requested by business group members are provisioned on the compute resources. A reservation is a share of one or more compute resources memory, CPU, and storage reserved for use by a particular Business Group in provisioning machines.

Since Code Nebulous was currently using vCloud Hybrid Services for development and test, we will create a reservation on this existing environment.

Because the Tenant Admin (CloudAdmin) has granted permissions for CodeNebAdmin to be an administrator of the Code Nebulous QE Fabric Group, CodeNebAdmin has the ability to slice and dice the compute resources that were given to them in the Fabric Group allocation. For these steps, we will log in as the CodeNebAdmin user and create a reservation.

 

 

Log out of Cloud Admin

 

Please log out using the Logout button on the top right of the screen

 

 

Log into vCloud Automation Center as CodeNebAdmin

 

While in Firefox, click the vCAC shortcut in the browser toolbar if you don't find yourself at the login screen upon logout from the previous step.

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter codenebadmin@nephosoft.com as the user name
  3. Enter VMware1! for the password.
  4. Press the Login Button

 

 

Navigate to Reservations

 

Press the >> button to open the Goals toolbar. The next step in administration would be to create a Reservation.

  1. Open the My Goals toolbar
  2. Select Fabric Configuration
  3. Select Create Reservations

The result is that the Reservations screen appears on the right.

Press the << button to hide the Goals toolbar

 

 

Add New Reservation

 

  1. Click (+) New Reservation > Cloud > vApp (vCloud Director) on the Reservations title bar.

The New Reservation - vApp (vCloud Director) page will appear.

 

 

Complete the New Reservation Form

 

Step 1 - Fill in the New Reservation - vApp (vCloud Director) form as follows:

Reservation Information Tab

Step 2:

 

 

Complete Resources Tab

 

When the Resources section appears, fill in as follows:

  1. Memory: Amount of memory in the virtual data center that this reservation will be allowed to consume. Lets use all of the small amount of memory allocated for Lab purposes and set - This Reservation:8
  2. Storage: CodeNebulous QE has access to two Storage Paths. Check both SSD-Accelerated and Standard
  3. For SDD-Accelerated, use the following values: This reservation reserved: 500, Priority: 1, then click the Green Check Mark to accept those values.
  4. For Standard, use the following values: This reservation reserved: 614, Priority: 0, then click the Green Check Mark to accept those values.
  5. When this form section is complete, Click the Network tab

 

 

Complete Network Tab

 

Step 1:

When the Network section appears, then fill in as follows:

Step 2:

We have now allocated vCHS resources for the consumption by the Code Nebulous group through vCAC. As we create blueprints for this group in the next step, those blueprints will consume the capacity allocated in this reservation.f

 

 

Creating A New Service Blueprint

A Service Blueprint is a complete building plan for a virtual, physical or public cloud machine. In this lesson, we will create a new service Blueprint for the Code Nebulous QE group. This Blueprint will replicate the process and policies that Code Nebulous uses today and therefore will be built on the vCHS platform. The latest version of Code Nebulous' proprietary software that we'll be deploying onto vCHS is called Secure Manager v4.5.

It is usually the role of the manager to assign blueprints to their team that are appropriate. For these next steps, we will log in as CodeNebQEMgr and create an AWS blueprint

 

 

vCloud Automation Center Service Blueprint

 

A Service Blueprint specifies both the system attributes and the management settings required to build and manage the machine throughout its life. A user requests a machine from a predefined catalog authorized for a specific user or group of users. Service Blueprints can be specific for a given Business Group or global and span multiple Business Groups.

 

 

Business Group Specific Service Blueprints

 

In addition, Service Blueprint policies specify the reservation policies that define the service level or tier of resources the user will be provisioned on as well as the amount of resources they will receive.

Service Blueprints can be configured to meet the unique needs of each business creating a business-aware cloud infrastructure.

 

 

Blueprints for vCHS and vCloud Director Endpoints

 

Next we'll design a service blueprint for use by Code Nebulous on the vCHS reservation we just configured. VCAC blueprints for vCHS and vCloud Director function identically, so lets briefly review how those work as they're slightly different from other blueprint types.

vCloud Automation Center's support of vCHS and vCloud Director allows users to provision vApps, and their component machines, in a virtual datacenter based on an existing vApp template.

A vApp is a compound object composed of one or more machines that can be provisioned and managed by vCloud Automation Center as a single entity. A vCHS or vCloud Director vApp is referenced by a vCAC vApp blueprint, which is composed of vCAC vApp Component blueprints. This relationship allows you to manage the vCHS or vCloud Director vApp by managing the vCloud Automation Center vApp. Additionally, users can perform operations directly on the individual component machines. For example, you can power off the vApp in vCHS or vCloud Director by using resource actions in vCloud Automation Center. Likewise, when you destroy a vApp and its component machines in vCloud Automation Center, you destroy the corresponding vApp and its virtual machines in vCHS or vCloud Director.

Before we create the vApp blueprint as our top level management point, we must first create the Component vApp blueprints that it will contain. Let's do that as the services architect for Code Nebulous, the Code Nebulous QE Manager.

 

 

Log out of CodeNebAdmin

 

Please log out using the Logout button on the top right of the screen

 

 

Log into Cloud Automation Center as CodeNebQEMgr

 

While in Firefox, click the vCAC shortcut in the browser toolbar if you don't find yourself at the login screen upon logout from the previous step.

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter codenebqemgr@nephosoft.com as the user name
  3. Enter VMware1! for the password.
  4. Press the Login Button

 

 

Navigate to Blueprints

 

Let's continue following the administrative process in the My Goals toolbar.

  1. Open the My Goals toolbar.
  2. Go to the Create and Publish an IaaS Blueprint if you weren't already in it.
  3. Select Create an IaaS Blueprint

The result is that the Blueprints screen appears on the right.

Press the << button to hide the Goals toolbar

 

 

Create vApp Component Blueprint

 

 

To create our new catalog item for deployment into VMware's vCloud Hybrid Service, we'll first need to create the component blueprints that map to the Secure Manager v4.5 application components.

Click (+) New Blueprint Cloud vApp Component (vCloud Director) on the Blueprints title bar.

The New Blueprint - vApp Component (vCloud Director) page appears.

 

 

Complete the new Blueprint form

 

Step 1 - Fill in the New Blueprint - vApp Component (vCloud Director) form as follows:

Step 2:

 

 

Go to the Build Information tab

 

Step 1 - The build information section appears. Fill in as follows:

Step 2 - Press the button to the right of the Clone from: field

 

 

Select an Image to Provision From

 

  1. Select vApp Template: cts-6.4-64bit
  2. Press OK

This template had previously been uploaded to vCHS and was discovered within the Code Nebulous organization's catalog during the endpoint data collection process.

 

 

Complete the Build Information Tab

 

Step 1:

Edit Machine Resources

Step 2:

 

 

Complete the Actions Tab

 

The Actions tab on a blueprint sets availability for resource actions to be granted through entitlements when configuring catalog services. If Resource Actions are disabled here on the blueprint, they can't be granted as entitlements.

Step 1 - The Security section appears; fill in this section as follows:

Step 2:

The component blueprint is created.

 

 

Create vApp Blueprint

 

The Secure Manager v4.5 application is comprised of a single virtual machine, so there's no need to create additional Component blueprints. Now we'll create the vApp blueprint that will become a parental management point for our completed component blueprint.

From the Blueprints page, Click (+) New Blueprint > Cloud > vApp (vCloud Director) on the Blueprints title bar.

The New Blueprint - vApp (vCloud Director) page appears.

 

 

Fill in Blueprint Information for vApp Blueprint

 

Step 1 - Fill in the New Blueprint - vApp (vCloud Director) form as follows:

Step 2:

 

 

Fill in Build Information for vApp Blueprint

 

Step 1 - The build information section appears. Fill in as follows:

Step 2 - Press the button to the right of the Clone from: field

 

 

Select vApp Template

 

  1. Select vApp Template: cts-6.4-64bit
  2. Press OK

This template had previously been uploaded to vCHS and was discovered within the Code Nebulous organization's catalog during the endpoint data collection process.

 

 

Select Component Blueprint

 

On the Build Information tab:

  1. Click the Edit icon on the Component Blueprint listed under Components:
  2. Use the drop down to select Secure Manager App Server v4.5 and then click the Green Check to commit. This maps the Component vApp Blueprint we configured earlier.
  3. Set the MinimumLease to 5 days and the Maximum to 20
  4. You may review the Properties and Actions tab, but we won't be making changes to those configurations. Click OK to create the Blueprint.

 

 

Publish Blueprint

 

We now need to publish the vApp Blueprint so that it can be added to the catalog

  1. Hover over the newly created Secure Manager v4.5 vApp blueprint and select Publish
  2. On the confirmation page, press OK

Note: Make sure you select the Secure Manager v4.5 vApp Blueprint and not the Component Blueprint created in an earlier step. You cannot publish a Component Blueprint.

 

 

Navigate to the Catalog Administration

 

  1. Press the >> button to open the Goals toolbar.
  2. The Goals toolbar remembers that we're in the Create and Publish an IaaS Blueprint area, and from here we can select Configure Catalog Item.

The Catalog Items screen should appear on the right.

 

 

Configure the Secure Manager v4.5 Catalog Item

 

  1. Click the Secure Manager v4.5 Catalog item to edit it

 

 

Configure the Secure Manager v4.5 Catalog Item - Continued...

 

  1. Icon: This is the image that end users will see in their catalog. Click the browse button and find the vCHS.png file in the Downloads folder. Press OK to apply the image
  2. Scroll down to the bottom of the frame
  3. Status: Determines whether the catalog item is Active or Inactive. Select: Active
  4. Service: This dropdown determines which area the catalog item will display in when the customer opens their catalog. Select: Development Infrastructure
  5. New and Noteworthy: Allows administrators the ability to publish this catalog item to a special list to advertise that it's available. Check: On
  6. Press the Update button to save the changes to the catalog item

If you have any issues finding the vCHS.png file, the full path is C:\Users\Administrator.CONTROLCENTER\Downloads\vCHS.png

 

 

Entitling a Catalog Item

In previous versions of vCAC, if you wanted to implement different policies for different blueprints, you were required to create multiple blueprints -- one blueprint for each variation of policy. In vCAC 6, policies have been abstracted from the blueprint configuration process, allowing you to use the same blueprint for multiple policies. That new functionality is accomplish through entitlements, and the value is that there are fewer blueprints to configure and maintain, eliminating blueprint sprawl.

 

 

Navigate to Entitlements

 

  1. Press the >> button to open the Goals toolbar.
  2. Select Configure Entitlements.

The Entitlements screen should appear on the right. Close the My Goals toolbar by clicking <<.

 

 

Add a New Entitlement

 

Press the + button at the top of the page to add a new entitlement.

 

 

Configure the Entitlement

 

  1. Name: Enter a descriptive name for the entitlement. Enter: Code Nebulous QE
  2. Status: Sets the entitlement to be either active or draft. Select: Active
  3. Users and Groups: Allows you to set the users who will receive this set of entitlements. This list is constrained to the Business Group members. Click into the shaded box and press the Space Bar to display all uses in that Business Group. One by one, add them to the entitlement. You should have the following added to the list: Cloud Admin, CodeNeb QE User, CodeNeb QE Mgr

When finished, press the Next button

 

 

Entitle Services

 

Code Nebulous end users are only going to start out with having access to the vCHS provisioning resource so that they can continue business as usual. Because we want to entitle the end users to only specific catalog items, we will leave this Entitled Services area blank. Scroll to the right in this window.

 

 

Entitled Catalog Items

 

If an administrator wants to grant an entitlement group access to a service, but limit the items accessible from within that service, they can do so by specifying individual catalog items within an entitlement policy. At this time, Code Nebulous users should only be able to request AWS resources, so we will add entitlement for that catalog item only.

  1. Press the + button next to the Entitled Catalog Items header
  2. Add Catalog Items to Entitlement: Allows the admin to choose specific catalog items that the entitlement users have access to. Select: Secure Manager v4.5
  3. Press OK

 

 

Entitle Resource Actions

 

Locate the Entitled Resource Actions header on the far right hand side of the Edit Entitlement page frame. Depending on your screen resolution, you may need to scroll to the right in the frame to see this section. If you're having difficulty, take a look at the image in the next step to see where Entitled Resource Actions is located in relation to the other entitlement management components.

  1. Press the + button next to the Entitled Resource Actions header
  2. Add Resource Actions to Entitlement: This is a list of all the available day 2 operations that an end user can have access to. Even though you entitle the action, it will only display to the end use if it is an appropriate action for the item type selected (for example, Connect Using VMRC would only work with vSphere and vCD endpoints). Select: All actions (scroll down to expose all of the various actions and click each one).
  3. Press OK

 

 

Confirm Entitlement Configuration

 

Confirm your settings look like the above, and press Add

 

 

Request a Virtual Machine in vCHS as a Code Nebulous User

Let's test our work.

Now that the Code Nebulous QE Manager has created a vCHS blueprint and entitlement, an end user is able to go and request that resource from their list of available blueprints. To test, we will log in and see how the catalog list looks from a Code Nebulous end user perspective.

 

 

Log out of CodeNeb QE Manager

 

Please log out using the Logout button on the top right of the screen

 

 

Log into vCloud Automation Center as CodeNeb QE User

 

While in Firefox, click the vCAC shortcut in the browser toolbar if you don't find yourself at the login screen upon logout from the previous step.

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter codenebqeuser@nephosoft.com as the user name
  3. Enter VMware1! for the password.
  4. Press the Login Button

 

 

View CodenebQEUser's Catalog

 

  1. Go to the Catalog tab

Note that the Secure Manager v4.5 application, and nothing else, is available for request.

2. Press the Request button to request the item

 

 

Complete Request Details

 

On the New Request form, review the pricing information. Daily and Lease costs are coming from a combination of Cost Profiles defined within vCAC and the additional daily blueprint costs we defined earlier. These are extrapolated out over the term of the lease. In a future release, ITBM Standard will be able to query vCHS and automatically assign costs to blueprints based on rate cards and consumption.

  1. Make sure the parent vApp is selected. This will highlight vApp wide attributes, such as lease duration, number of Machine instances, etc.
  2. Fill out Request Information for the vApp. # Machines: 1
  3. Lease Duration: Leave at 5 days
  4. Description: A description of the machine being provisioned. Enter: Testing Secure Manager
  5. Reason for Request: A reason that, if approvals are enabled, will go to the approver. Enter: Project #4442
  6. Now that we have the required details for the vApp. Click on cts-6.4-64bit to fill in details for the component machine.

 

 

Complete the Request

 

Review the configuration information for the component machine. Users have a range of vCPU and Memory configurations available based on the scope we defined in the Component vApp Blueprint.

Click Submit to complete the request

Click OK on the submission acknowledgment screen

 

 

Monitor the Request

 

  1. Click the Requests tab and note that the request is now "In Progess".
  2. Click Refresh Data until the request status changes to Successful

 

 

View the Provisioned Machine

 

  1. Go to the Items tab.
  2. You should see a new Secure Manager server provisioned

 

 

Establishing Global Service Blueprints

As Nephosoft continues to integrate Code Nebulous into their environment, some of the Code Nebulous QE team will help with the testing of Nephosoft products. To enable access for Code Nebulous QE to the testing environments, Nephosoft will share private cloud resources in vSphere with Code Nebulous to minimize template maintenance. Nephosoft IT has been considering this approach for sometime, and have decided to make vSphere resources available to both QE groups. This use case will demonstrate how to enable an existing vSphere blueprint for one Business Group to be consumed by another Business Group.

 

 

Log out of CodeNeb QE User

 

Please log out using the Logout button on the top right of the screen

 

 

Log into vCloud Automation Center as CloudAdmin

 

While in Firefox, click the vCAC shortcut in the browser toolbar if you don't find yourself at the login screen upon logout from the previous step.

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter cloudadmin@nephosoft.com as the username
  3. Enter VMware1! for the password.
  4. Press the Login Button

 

 

Navigate to Fabric Groups

 

Press the >> button to open the Goals toolbar.

  1. Make sure to use the < Back to My Goals link at the top, then select Fabric Configuration
  2. Select Create Fabric Groups
  3. Highlight Code Nebulous and click Edit

The Fabric Groups screen should appear on the right.

 

 

Allow Fabric Group Access to vSphere

 

  1. Under Compute Resources, check the Cluster Site A row to add these Compute resources to the Code Nebulous Fabric Group. You may need to scroll down in the window.
  2. Press OK

 

 

Navigate to Reservations

 

  1. Press the >> button to open the Goals toolbar.
  2. Select Fabric Configuration
  3. Select Create Reservations

The Reservations screen should appear on the right

 

 

Create a New Reservation for Code Nebulous on vSphere

 

Add a new vSphere reservation by going to New Reservation > Virtual > vSphere (vCenter)

You may need to scroll to the right in the Reservations window to find the New Reservation drop down.

 

 

Enter Reservation Information

 

Since we already have a reservation created for Nephosoft, we can copy that reservation and change it for Code Nebulous' needs.

  1. Copy from existing reservation: Select Cluster Site A-Res-1
  2. Business Group: Select CodeNebulousQE

We will leave it so that Code Nebulous has all the same hardware reservations, so at this point, just press OK to create the reservation.

 

 

Navigate to Entitlements

 

  1. Press the >> button to open the Goals toolbar
  2. Navigate to the Create and Publish an IaaS Blueprint
  3. Select Configure Entitlements

 

 

Entitle Code Nebulous to Catalog Item

 

  1. Click on the Code Nebulous QE entitlement to edit it
  2. Change to the Items & Approvals tab
  3. Click the + button in the Entitled Catalog Items header
  4. Check the box next to Inventory Manager v5.3
  5. Press OK

The Code Nebulous QE team now has access to provision Nephosoft QE's Inventory Manager application to the shared private cloud capacity based on vSphere

 

 

Confirm and Update Entitlement

 

Confirm that Inventory Manager v5.3 has been added in the Entitled Catalog Items column and press the Update button

 

 

Check Our Work

Let's now confirm that the Code Nebulous QE User has the ability to request their original vCHS item as well as the newly entitled Inventory Manager v5.3 from vSphere.

 

 

Log out of Cloud Admin

 

Please log out using the Logout button on the top right of the screen

 

 

Log into vCloud Automation Center as CodeNeb QE User

 

While in Firefox, click the vCAC shortcut in the browser toolbar if you don't find yourself at the login screen upon logout from the previous step.

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter codenebqeuser@nephosoft.com as the username
  3. Enter VMware1! for the password.
  4. Press the Login Button

 

 

Confirm Inventory Manager in Catalog

 

  1. Click the Catalog tab

Note that the customer has a blueprint that's shared with the Nephosoft QE team called Inventory Manager v5.3 as well as their original Secure Manager v4.5 catalog item.

 

Congratulations on successfully completing the vCloud Automation Center Hands on Lab!


This module has demonstrated how the vCloud Automation Center solution can help organizations rapidly deploy private and hybrid clouds across their existing infrastructure while greatly improving the experience of the end users (consumers). Customers that have deployed the solution have achieved the following benefits:

Improved time-to market for releases, updates and server builds
Reduced the burden on IT while empowering their end users
Integrated cloud management with existing IT ecosystem
Improved operational efficiencies

Please take some time to explore the other modules in this lab for a detailed look into various components of vCloud Automation Center.


Module 2 - Creating and Maintaining Objects Using XaaS

Overview


This lab will demonstrate the ability to use vCloud Automation Center's new Advanced Service Designer to rapidly add catalog items that do not necessarily create virtual infrastructure. The lab will cover features of vCloud Automation Center, including use cases from the perspective of both the end-user (consumer) and the administrators of the solution. The initial use cases are executed by the Tenant Administrator who needs to Managers to request the creation of a user in Active Directory. Additional use cases are executed by the vCloud Automation Center Tenant Administrator who needs to be enable users to run custom Resource Actions on an existing VM.

Lab Captains:

Jim DeWitt, Zack Kielich


Introduction to Scenario


The next few sections will describe and introduce the environment and use cases we will be exploring. Please note you must wait 10 minutes before you can access the system. Please use this time to read the introduction and complete the prep work.


 

Getting to Know the Lab Environment

This module is a key starting point for the rest of the Lab, do not skip it or lessons later on may not work. The vCloud Automation Center Lab highlights what is possible when a number of exciting technologies are deployed into a seamlessly integrated solution. To ensure you get the most out of this lab, we are going to take some time to review the key components.

This lab will start by taking the participant through properly configuring vCenter Orchestrator (vCO) to provision to Active Directory. Participants are then walked through the different use case scenarios. This starts with showing how any service can be provisioned by creating a new catalog item from a vCO workflow through the easy-to-use Advanced Service Designer (ASD). Finally we'll explore how administrators can create new functionality through Resource Actions built in the ASD.

This lab is intended for Cloud administrators looking to help enterprise IT overcome the cloud management challenges of today

 

 

Control Center

You should see the ControlCenter Desktop, when you first log into the Lab.

 

 

Verifying That You Are on the Control Center

 

Any point during this lab you can verify that you are on the Control Center Desktop by examining the background wallpaper.

 

 

Application Used During This Lab

 

Although Internet Explorer and Chrome are supported by vCloud Automation Center, for continuity will be using only Firefox to connect to the vCAC portal. There is a shortcut in the Windows taskbar for Firefox that will only be visible if you are logged into the Control Center as Administrator.

Read through the rest of the introduction prior to launching Firefox and logging in. This will give all of the lab VMs and services time to properly start.

 

 

Browser Options

 

When you open Firefox later in the lab, the home page is configured to take you to vCAC's portal. Now that vCAC 6.0 is fully integrated with Single Sign-On, you'll be first prompted for credentials by the vCenter SSO components and then redirected.

 

 

Introduction to Fictional Company: Nephosoft

 

As you work through the lab's use cases, you'll be assuming roles within a fictional company, Nephosoft, and addressing their business and IT challenges.

Nephosoft is a multi-national software company that has expanded from a niche market of developing manufacturing and logistics integration software to an enterprise application hosting firm. Nephosoft recently acquired Code Nebulous, a visionary ecommerce and security application company, with a plan to leverage Code Nebulous unique (proprietary) application and existing cloud-present customer base, bringing them to the next level.

As the Nephosoft IT team work to integrate the IT infrastructure of Code Nebulous into Nephosoft's virtual datacenters, they have identified the need for engineering and QE staff from both organizations to request and manage their own development and testing environments. The engineering teams have implemented an agile development methodology, which requires that the quality engineering team stand up new testing environments at least once per week, for each of the Nephosoft and Code Nebulous products. Nephosoft has since installed vCloud Automation Center and allow their teams to request the machines that they need.

Since allowing their end users to request virtual infrastructure, the IT teams have noticed new and different types of requests coming from the end users. Since some of the IT team's time has been freed up with no longer having to provision machines for end users, they are now able to address these frequently occurring requests on their time through automation. The goal is to allow customers to be able to request more than just virtual infrastructure as well as extend the list of Resource Actions exposed to the end users to increase the level of manageability they have of their testing environments.

 

 

Nephosoft Fundamental IT Challenge

In order to support self-service for the engineering and QE teams while leveraging existing infrastructure from both organizations and retaining the necessary controls, the Nephosoft IT leadership team has decided to implement vCloud Automation Center's XaaS capability.

 

 

Introducing vCloud Automation Center XaaS

vCAC's Anything as a Service (XaaS) functionality allows administrators to create services and resource actions from workflows in vCenter Orchestrator. These capabilities help customers realize the fastest time-to-cloud value, unparalleled IT efficiency, and enable them to respond to market demands very quickly and economically.

Key Technology and Products
vCAC's XaaS helps companies accelerate the deployment of business relevant services regardless of if it relates to virtual infrastructure. XaaS enables extensible self-service provisioning of any service you can build through vCO and will utilize established vCAC business policies. It provides a secure portal where authorized administrators, developers, or business users can request new services and manage existing ones from predefined, user-specific menus.

The focus of this lab session will be on XaaS.

 

 

Overview/Benefits

VMware helps enterprise IT overcome cloud management challenges with the following differentiators:

 

 

Plugin Considerations

vCenter Orchestrator has an extensive list of plugins which are available at the VMware Solutions Exchange. The plugins that we will be utilizing in this lab are:

 

 

Services

Services are a catalog item type that allow administrators to classify catalog items so that they are able to be found and requested easily by end users.

 

 

Logical Topology

The lab environment was constructed using a simple deployment configuration where all IaaS system components were installed on a single virtual machine, with catalog and XaaS functionality on a separate appliance. This is a typical configuration that many companies use to deploy a production pilot or limited scale production implementation up to 2,000 virtual machines. In this configuration, the self-service portal can be accessed through a web interface from any remote device. vCloud Automation Center will need to interact with the management interfaces of virtual, physical, or public cloud resources that it is managing. These interactions may also be remote.

As configurations grow, or as the cloud becomes an essential component of an organizations core infrastructure, IT will look to distribute additional vCloud Automation Center components for greater availability and scalability.

 

 

Lab Setup

Objective
To demonstrate how vCloud Automation Center can be used to deliver any service, we've preconfigured a live system running the vCloud Automation Center platform. The initial use cases are executed by administrators that will be creating new services. Other use cases are executed by end users.

Persona

Password for all users is: VMware1!

NOTE: Passwords are CASE SENSITIVE; User IDs are NOT case sensitive.

 

 

Preconditions

Please note: If it has not been at least 10 minutes since you started this lab DO NOT CONTINUE. Please wait a full 10 minutes before continuing into the system

 

 

Foreign Keyboards

 

If you have a foreign keyboard, there is a chance that you will have difficultly finding certain keys on your keyboard. To work around this, you can use the onscreen keyboard on the Control Center by going to Start> Programs> Accessories> Ease of Access> On-Screen Keyboard

 

Prep Work - Creating the Advanced Services Endpoint


In this lab we'll be creating an Active Directory user account through the self service portal. To prevent sending sensitive information in plaintext when programmatically setting the password on an account, Active Directory requires the use of SSL encrypted calls for password related actions. This requires certificate installation on the domain controller and has already been configured for you in the lab. The next step is to import the Domain Controller certificate to vCenter Orchestrator and configure the Active Directory endpoint to make calls via SSL over port 636.

vCenter Orchestration configuration is extremely easy to complete thanks to new Administrative wizards within the vCAC portal for configuring Advanced Services Endpoints. This wizard leverages out-of-the-box vCO workflows to automatically import the Domain Controller certificate and add Active Directory as an endpoint. We're then ready to leverage Active Directory workflows securely with vCAC's Advanced Service Designer.

In the prep work phase, we'll walk you through this simple process.


 

Launching the vCAC Portal

 

To logon to the vCAC portal, launch the FireFox browser from the taskbar.

 

 

Log into vCloud Automation Center as CloudAdmin

 

While in Firefox, click the vCAC shortcut in the browser toolbar. You should be brought to the vCAC login screen.

  1. In the login field, enter cloudadmin@nephosoft.com as the username
  2. Enter VMware1! for the password.
  3. Press the Login Button

 

 

Navigate to Advanced Services

 

In the vCAC Portal:

  1. Select the Administration tab at the top of the window
  2. Select Advanced Services in the Administration menu

 

 

Create a New Endpoint

 

In the Advanced Services Menu:

  1. Select Endpoints
  2. Click the + to create a new Endpoint

 

 

Specify Active Directory as Plug-in Type

 

In the Add Endpoint Menu on the Plug-in Tab:

  1. Click the down arrow next to the Plug-in field and select Active Directory
  2. Click Next >

 

 

Enter Name and Description

 

In the Add Endpoint Menu on the Endpoint Tab:

  1. Enter the name of the new Endpoint - Corporate AD
  2. Enter a description
  3. Click Next >

 

 

Enter Endpoint Configuration Details

 

In the Add Endpoint Menu on the Details Tab:

Enter the following details

  1. host: controlcenter.corp.local
  2. port: 636
  3. ldapBase: DC=corp,DC=local
  4. useSSL: Select Yes
  5. defaultDomain: corp.local
  6. sharedUserName: corp\administrator
  7. sharedUserPassword: VMware1!
  8. Verify your entries and click Add >

 

 

Verify a Successful Endpoint Add

 

Verify that you now see the Active Directory Endpoint in the list on the Administration>Advanced Services>Endpoints menu.

vCAC is now able to utilize this endpoint in the Advanced Service Designer! Let's move to the next step in the module to build new self-service offerings.

 

Creating Non-VM Objects Through XaaS


Now that we have an Endpoint configured, we're going to walk through the process of creating a non-VM based object through that Active Directory instance, which we can then manage from within vCloud Automation Center.


 

Log into vCloud Automation Center as Cloud Admin

 

If you've closed or logged out of the previous vCAC session, please log back in as Cloud Admin. If still logged in, you may skip this step.

Note: During the lab, if you need to return to the login screen, press the vCAC shortcut in the Firefox toolbar. To log in:

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter CloudAdmin@nephosoft.com as the username
  3. Enter VMware1! for the password.
  4. Press the Login Button

Passwords for all users will be the same: VMware1!

 

 

Navigate to ASD's Custom Resources

 

To create catalog items from vCO workflows, we must begin by determining what the end state will be of the workflow. For our new service, what is it that we want to govern? In this case, we will be creating an Active Directory user account that we want to manage. To do this, we need to first create a Custom Resource so that vCAC will understand the type of object that is being created and be able to give that information to management workflows in vCO. We will use the Advanced Service Designer (ASD) in vCAC to first create the custom resource.

  1. Click the Advanced Services tab
  2. Select Custom Resources from the left side menu
  3. Press the + button next to the Custom Resource header

 

 

Fill in Resource Type Information

 

Once in the Add Resource screen:

  1. Press the space bar or start typing "AD" into the Inventory Type text field to list. This will populate the drop down with a list of of matching object types pulled from vCO. It is limited to the plugins installed into vCO instance being used by the tenant.
  2. Select: AD: User from the drop-down.
  3. In the name field, enter a name for this type of resource. Enter: AD User
  4. Click the Next > button

 

 

Review Resource Details Form

 

The Resource Details Form allows you to add and rearrange fields that will appear when you click on the details of a created item. In this case, the screen looks fine, so simply press the Add button

 

 

Confirm Configuration

 

Confirm that the custom resource was created when brought back to the list of custom resources.

 

 

Navigate to Service Blueprints

 

Now that vCAC understands the output that our vCO workflow will be creating, we're ready to create a Service Blueprint.

  1. On the left side menu, select Service Blueprints in the Advanced Services menu
  2. Press the + button next to the Service Blueprints header

 

 

Choose a vCO Workflow

 

The Advanced Service Designer will display a hierarchy of workflows just as you would see them in vCO.

  1. Select the workflow Orchestrator> Library> Microsoft> Active Directory> User> Create a user with a password in a group
  2. Note that on the right side of the screen vCAC pulls in all the inputs that vCO is expecting as well as provides the vCO workflow output. Due to the limited resolution of the lab console, you may have to scroll through the frame to see some of the additional information available.
  3. Press the Next button

 

 

Complete Blueprint Details

 

The Blueprint Details tab contains information that will show to the end user. You are welcome to change the values, but for this lab, you can simply click the Next button.

 

 

Rearrange vCO Input Fields

 

In the Blueprint Form screen, you have the ability to add, remove, and rearrange fields to best collect the information from the person requesting the service.

  1. Scroll to the bottom of the Blueprint Form design frame so that you can see the majority of the input fields which were automatically added. These are input parameters that vCO requires to run the workflow.
  2. Drag the password, confirmPassword, and changePasswordAtNextLogon fields so that they are in a second column. At this screen resolution you may need to scroll sideways to see the right side of the form page.

Optional: You have the ability to rename the fields by hovering over the field and pressing the edit (pencil) button. In that screen, you can change the label. You can also hide fields, change requirements for completion, pre-populate with data, and set data constraints to help users properly fill out requests.

 

 

Add a New Field to the Screen

 

Before we move to the next tab, we're going to add a new data field to the form.

  1. Scroll through the frames to locate the Date & time field from the toolbar on the left and to ensure you have room to drag an item below the displayName field on the right.
  2. Drag and drop a Date & time field from the toolbar on the left to just below displayName.

In this example we're merely tracking the start date as object meta-data, but it could be used to schedule account creation at a future date or trigger other user orchestration events.

 

 

ID and Label the Date Field

 

Enter the following information:

  1. ID: this is an internal vCAC field ID name. Enter: StartDate
  2. Label: This label will appear along with the field to the end user. Enter: Start Date
  3. Click Submit

 

 

Confirm Screen Layout

 

The screen should look like the above when it's complete. Press the Next button

 

 

Associate a Provisioned Resource Type

 

On the Provisioned Resource screen, we're going to tell vCAC that when the vCO workflow is complete, that we want to take the vCO workflow output object and create a New User item with the type of AD User (which we just created earlier). This allows the end user to manage the item once the vCO workflow is complete.

  1. Click the down arrow next to No provisioning
  2. Select newUser [AD User]
  3. Click the Add button

If this were a case where you wanted a vCO workflow based service to run in more of a "fire and forget" mode, and not have an item created at the end to manage within vCloud Automation Center, you could leave the value as No Provisioning.

 

 

Publish Blueprint

 

You should now be redirected back out to the Service Blueprint screen. We now have to publish the Service Blueprint so that it can be added as a catalog item and then entitled.

  1. Press the down-arrow button in the Actions column that is associated with the new Service Blueprint.
  2. Select Publish in the dropdown.

After you choose to publish the blueprint, there should be a green check in the Status column just like the one present for Create A Hadoop Cluster.

 

 

Creating Services for Catalog Organization

When an organization begins to build up their service catalog with many offerings it can become difficult for users to find the service they're looking for. To help with organization, it is possible to create service types. In the next section of the lab, we will create a service type that is more fitting for our new catalog item for creating a user in Active Directory

 

 

Navigate to Services

 

  1. Push the >> button to open the Goals toolbar
  2. Select Create and Publish an Advanced Service
  3. Select (Optional) Create a Service

 

 

Create a New Service

 

  1. Click the button to close the My Goals menu to give yourself some additional screen space
  2. In the Services screen, press the + button near the Services header

 

 

Configure the New Service

 

In the Add Service screen, we will configure the new service type. Enter the following information:

  1. Name: Name of the service which will show up to users in the left menu on the Catalog page. Enter: Human Resources
  2. Description: a description of the service. Enter: Add new users
  3. Status: Set whether the service is visible. In the drop down, select: Active
  4. Owner: The owner of the service. This user's name and email address will show up if a user hovers over the info icon on the services menu in the catalog. Enter: cloudadmin and Select Cloud Admin (cloudadmin@corp.local)
  5. Click the Add button.

 

 

Confirm Service was Created

 

Confirm that the new Human Resources service shows up in the Services list

 

 

Configure Catalog Item

Once a blueprint of any type is created, it has to become active as a catalog item and associated to the proper service. The following steps will walk you through creating a catalog item so that it can be published out to customers in the catalog under the Human Resources service.

 

 

Navigate to Catalog Items

 

  1. Press the >> button to open the Goals toolbar
  2. If not already in there, select Create and Publish an Advanced Service
  3. Select Configure Catalog Item

 

 

Edit Catalog item

 

Click the button to close the My Goals menu again to give yourself some additional screen space.

Find the "Create a user with a password in a group" catalog item and click the name to edit the item. Hovering over the name will reveal the full text.

 

 

Configuring the Catalog Item

 

  1. Scroll down and notice that some of the fields have been pulled from the service blueprint and that the Status is active, but the Service assignment has not yet been set.
  2. In the Service drop down, select Human Resources.
  3. Press the Update button to continue.

Another thing to note is that a representational icon has been set automatically. This graphic is being pulled in from vCO, but can be replaced with another icon if you wish.

 

 

Entitle the Catalog Item

Entitling a Catalog Item is the process of defining the policy of which users/groups will be able to request services and whether there are any approvals that need to be completed in the process.

In the next steps, we will entitle a QE Manager to have the ability to request the catalog item we've been creating.

 

 

Navigate to Entitlement

 

  1. Press the >> button to open the My Goals toolbar
  2. If you're not already there, select Create and Publish an Advanced Service
  3. Select Configure Entitlements

 

 

Add an Entitlement

 

In the Entitlements screen, press the + button next to the Entitlements header

 

 

Enter Entitlement Details

 

In the Entitlement Details tab we define which users are part of the Entitlement and give it the Entitlement name. Please fill in the fields as follows:

  1. Name: Name of the Entitlement. Enter: Managers
  2. Status: Sets the Entitlement status to active or draft. From the drop down, select: Active
  3. Business Group: The business group is something that's set by the Tenant Admin (CloudAdmin) and is a functional group of users. Nephosoft QE should already be set as it's the only Business Group configured, which means this form entry is disabled. You would be able to choose a Business Group if more than one was defined.
  4. Users & Groups: The list of possible users gets supplied by the Business Group. Press the Space Bar while this field is active to see all possible users and groups that you can add to this Entitlement based on the Business Group. Add: Neph QE Manager from the list
  5. Press the Next button

 

 

Add Items and Approvals

 

This screen allows us to set the items that users in the Entitlement are able to request.

  1. In the Entitled Services column, start to type Hum and the results will be auto filtered. Select: Human Resources
  2. Note that, due to the restricted resolution of the lab desktop, you would need to scroll to the right in this frame to access another column of entitlements for Actions. We're not leveraging those day 2 action entitlements in this excercise, so continue on by pressing the Add button.

It's important to know that if you entitle an entire Service, that all items associated to that service will appear for that user. If you only want some of the items from a service to appear, explicitly list them in the Entitled Catalog Items column.

 

 

Confirm Entitlement Created

 

You should be automatically taken back to the Entitlements screen. Confirm that the new Managers Entitlement is there.

 

 

Check Work

We have now completed all that needs to be done for a user to be able to request a new user in Active Directory. We will now log in as an entitled user and confirm the catalog item shows up and that it works as expected when requested.

 

 

Log out of CloudAdmin

 

Press the logout button at the top right corner of the page.

 

 

Log into vCloud Automation Center as NephQEMgr

 

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter nephqemgr@nephosoft.com as the user name
  3. Enter VMware1! for the password.
  4. Press the Login Button

 

 

Navigate to Human Resources Service

 

  1. Click on the Catalog tab
  2. Confirm that the Human Resources service shows up in the left menu. Select the Human Resources service.
  3. You should see the Create a user with a password in a group catalog item. Press the Request button.

 

 

Enter Request Information

 

Fill in the information on the Request Information screen. Enter the following:

  1. Description: Description of the request. This shows up on the Requests screen. Enter: Add user John Doe
  2. Reasons: If there is an approval, this reason will display to the approver. Enter: New Hire
  3. Press the Next button

 

 

Complete Request Form

 

This form should look familiar. This is the form that we created when we were in the Advanced Service Designer.

Note that you may need to scroll sideways to view the rest of the fields in the lab environment.

Enter the following information:

1. groupContainer: The group that the user will be places into in AD once created. Enter: Users

2. Enter the following details into User Information:

3. Press the Submit button

 

 

Acknowledge the Submission

 

Click OK to acknowledge the request submission

 

 

View the Newly Created User

 

  1. Click over into the Items tab and wait for the vCO workflow to complete.
  2. You can refresh the data by pressing the Refresh Data button in the lower right area of the screen

It may take a minute or two for the new user to show up in the items list. Press Refresh regularly until the jdoe item appears. Note that the items list is organized by Services category.

 

 

Item Actions

 

The vCO workflow has now completed and a new AD user item has been created in vCAC to manage it.

Note that there are no actions available beyond viewing the details. This is because when creating XaaS items, no actions come out of the box. They must be defined through the Advanced Service Designer.

 

 

Verify User Account Creation in AD

 

Lets go check Active Directory Users and Computers to see the results of our service request:

  1. On the ControlCenter desktop click Start> Administrative Tools> Active Directory Users and Computers to launch the mmc.

 

 

View the AD Account

 

Our new AD Account for John Doe should be located in the container specified in the service request.

  1. Click on Users in the navigation pane.
  2. Check out the properties on the new jdoe account!

This portion of the module is now complete. In the next section we'll explore creating resource actions for performing custom day 2 activities against provisioned resources.

 

Creating Resource Actions Through Advanced Service Designer (XaaS)


Resource Actions are management operations that can be completed against provisioned items in vCloud Automation Center. In our last exercise, we created an AD User account and common Resource Actions for that resource type might be reset password, disable account, and unlock account. If we're talking about virtual machines, typical Resource Actions are power on, power off, reconfigure, destroy, etc. Many typical VM focused Resource Actions are provided out of the box, but there are good reasons for creating your own custom day two activities - whether extending native functionality or simplifying management of workloads for your users.

In this next exercise we're going to examine the process creating a custom Resource Action to expand vCAC's functionality. vCloud Automation Center has the native ability to manage snapshots for cloned machines, but not for machines provisioned from linked clones. The next section in this module will walk you through how to extend vCAC's out of the box functionality to include snapshots for linked clones.


 

Log Out

 

If you are logged in as another user from the a previous module section, please log out using the Logout button in the top right area of the screen.

 

 

Log in as CloudAdmin

 

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter cloudadmin@nephosoft.com as the user name
  3. Enter VMware1! for the password.
  4. Press the Login Button

 

 

Navigate to Resource Actions

 

Just like the last module, we will build our object in the Advanced Service Designer (ASD). To access the ASD:

  1. Click the Advanced Services tab
  2. Select the Resource Actions option on the left
  3. Use the + button to add a new Resource Action

 

 

Select vCO Workflow

 

We'll now choose a vCO workflow to run when the Resource Action is requested. This hierarchy list on the left is pulled directly from vCO and it would look the same if viewed through the vCO client.

  1. Traverse the folders to select: Orchestrator> Library> vCenter> Virtual Machine Management> Snapshot> Create a Snapshot
  2. Note that the inputs and output from the vCO workflow are automatically recognized and listed on the right side of the screen
  3. Press the Next button

 

 

Verify Input Resources

 

In this screen, you're able to define the information that will be passed to vCO automatically. For example, vCAC knows that this snapshot action occurs only on a vCenter virtual machine so it has already determined that it will send the vCO workflow the VM information based on the VM this Resource Action was requested on.

Leave the default settings and press Next

 

 

Configure the Details

 

These details will be displayed to the end user. For example, the Name value will display in the list of actions when a user opens the list of actions on a virtual machine.

The default values are fine here, so press Next

 

 

Configure the Form Screen

 

This is the screen that end users will fill out when requesting the resource action. You can move the fields around, add new fields from the tool bar on the left, and customize labels and data constraints.

The default layout works for this use case, so press Add

 

 

Publish Resource Action

 

Now that we've created the resource action, we need to publish it in order for it to be entitled.

Click the down arrow button in the action column for the Create a snapshot row. Select Publish from the drop down list.

Once the resource action has been published a green check will show up in status column.

 

 

Entitlements

We'll now configure the Entitlements for the action we've created. This is done much the same as the Entitlements we configured for creating a new Active Directory user account, but we'll now be editing the Entitled Resource Actions component.

 

 

Navigate to Entitlements

 

  1. Click the >> button to expand the Goals toolbar
  2. Select Create and Publish an Advanced Service
  3. Select Configure Entitlements

 

 

Edit Nephosoft QE

 

We want general users to be able to invoke this Action, so we will edit an already created Entitlement which includes all of our Nephosoft QE members. If the row is difficult to read at this resolution, hover over the entries to see the full name of the Entitlement.

Click on the Nephosoft QE entitlement to edit it.

 

 

Edit the Nephosoft QE Entitlement

 

Click Next> to move to the Items & Approvals tab

 

 

Add the Resource Action to the Entitlement

 

In the Items & Approvals tab perform the following:

  1. Scroll right until you are able to see the Entitled Resource Actions column.
  2. Move over to the search field above the list of Entitled Resource Actions. Type "C" to narrow and begin the search for unallocated Actions to assign. When Create a snapshot (Virtual Machine) appears, select it to add to the Entitled Actions list.
  3. Click Update to save the Entitlement changes

 

 

Log out of CloudAdmin

 

Log out using the Logout button in the top right area fo the screen.

 

 

Log in as NephQEUser

 

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter nephqeuser@nephosoft.com as the username
  3. Enter VMware1! for the password.
  4. Press the Login Button

 

 

Select Create a Snapshot Action

 

This user will now notice a new Action in their list of Actions for all provisioned vSphere Virtual Machines. To access it:

  1. Click the Items tab
  2. Click the down arrow button in the Actions column that is associated with the vSphere VM
  3. Select Create A Snapshot

In this situation, we'll assume that the reason that the QE engineer is taking a snapshot is because they found an error during testing. They would like the development team to be able to access the machine as it is at the time of the error in order to troubleshoot the issue.

 

 

Enter Description and Reason

 

Enter a description and reason into the fields:

  1. Description: This will appear when tracking the progress of the request. Enter: Software Bug #590132 Snapshot
  2. Reasons: If an approval is required for this action, the Reasons will be sent to the approver. Enter: Send error to development
  3. Press the Next button

 

 

Complete Snapshot Information

 

Complete the information required by vCO to create the snapshot:

  1. name: This will become the name of the snapshot in vSphere. Enter: Error 550591
  2. description: This will become the description of the snapshot in vSphere. Enter: Error from the above ticket number
  3. memory: Specify if the memory should be included in the snapshot. Select: Yes
  4. quiesce: Specify if you would like to quiesce the OS files during the snapshot. Select: Yes
  5. Click Submit
  6. Click OK on the validation screen that pops up.

 

 

Confirm Snapshot was Successful

 

Go to the Requests tab and on the Filter by State field, choose Completed.

Note that the Create a Snapshot request has completed with the Status of Successful

 

 

Next Steps

As you can see, the ASD is a very powerful tool that allows you to extend vCAC's functionality out to anything that has a vCO workflow. To tie this back to a real world situation where we wanted to add snapshots to items that didn't allow for snapshots out of the box, we would most likely want to add in some more resource actions like "Revert to current snapshot" and "Remove All Snapshots"

 

Summary


Congratulations on completing the vCAC Advanced Service Designer (XaaS) lab!

These labs have demonstrated how the vCloud Automation Center's Advanced Service Designer can help organizations rapidly extend the out of the box provisioning and functionality through vCO workflows. Organizations that have deployed the solution have achieved the following benefits:


Module 3 - Cost Modeling with vCloud Automation Center and ITBM Standard

Overview


This lab will demonstrate the ability to use IT Business Management Standard with vCloud Automation Center to provide accurate cost transparency to consumers and IT management for your virtual infrastructure.

 

Lab Captains:

Jim DeWitt, Zack Kielich


Introduction to Scenario


This lesson is a key starting point for the rest of the module, do not skip it or lessons later on may not work. vCloud Automation Center together with IT Business Management (ITBM) Standard highlights what is possible when a number of exciting technologies are deployed into a seamlessly integrated solution. To ensure you get the most out of this lab, we are going to take some time to review the key components.

This lab introduces new capabilities in providing cost transparency to your virtual infrastructure.


 

DON'T SKIP THE INTRODUCTION

The services of the various vCAC components in your vPOD are busy getting started up. Reading through this overview will give them time to power up and register with each other. Be aware that this process can take up to 10 minutes.

 

 

What's New

 

IT Business Management (ITBM) Standard introduces many new capabilities aimed at providing cost transparency, which enable enterprises to:

  1. Model and price vCAC blueprints based on current cost and utilization levels of Virtual Machines
  2. Determine the placement of workloads in Private or Public Clouds based on Cost and Services available in the Hybrid Cloud environment
  3. Showback of cost and utilization of VMs and Blueprints based on Business Unit, Application Group across the Hybrid Cloud environment
  4. Enable Infrastructure stakeholders to manage Costs based on CapEx and OpEx Budget availability
  5. Provide these capabilities with minimal configuration with out-of-the-box data (automatic rate card generation), leveraging VMware’s intellectual property on IT Benchmarking and IT Business Management

 

 

Feature Highlights

 

Some of the new features you will be seeing in this module include:

  1. Pricing of Blueprints - know the cost of virtual infrastructure, broken down by Clusters, Hosts for CPU, Memory an Storage
  2. Showback based on Cost and Utilization of VMs, by Business Unit or Applications
  3. Cloud Planning - model VM placement in Private or Public Cloud
  4. Budget Planning - Manage Costs based on CapEx, OpEx Budges
  5. Showback based on vCAC Resources by Blueprint, Business Group, Tenant

 

 

Getting to Know the Lab Environment

This lesson is a key starting point for the rest of the Lab module, do not skip it or lessons later on may not work. The Business Management component for vCAC highlights what is possible when a number of exciting technologies are deployed into a seamlessly integrated solution. To ensure you get the most out of this lab, we are going to take some time to review the key components.

This lab will start by taking the participant through an overview of the Business Management functions within vCenter Automation Center Version 6. Participants are then walked through the different use case scenarios from various perspectives. 

This lab is intended for Cloud administrators looking to help enterprise IT improve visibility and transparency of both Private and Public cloud options, and to provide a variety of showback reporting options.

 

 

Control Center

 

You will interface with the systems in this lab module through the Control Center virtual machine. You should be presented with this system's desktop when the lab is first initiated. You may find yourself navigating through a number of remote desktop sessions or consoles, but the Control Center will always be easy to identify with the information found in the bottom right of the desktop image.

 

 

Applications for this Lab

 

Although Internet Explorer and Chrome are supported by vCloud Automation Center, for continuity will be using only Firefox to connect to the vCAC portal. There is a shortcut in the Windows taskbar for Firefox that will only be visible if you are logged into the Control Center as Administrator.

Read through the rest of the introduction prior to launching Firefox and logging in. This will give all of the lab VMs and services time to properly start.

 

 

Browser Options

 

Although Internet Explorer and Chrome are supported by vCloud Automation Center and ITBM Standard, for continuity we will be using only Firefox to connect to the vCAC portal. Please read through the rest of the introduction prior to launching Firefox and logging in. This will give all of the lab VMs and services time to properly start.

  1. Note: There is a shortcut in the Windows taskbar for Firefox that will only be visible if you are logged into the Control Center as Administrator.
  2. When you open Firefox later in the lab, you'll find links in the bookmarks toolbar for the various components we'll need for the lab. The site we'll be primarily utilizing is vCAC's portal for the Nephosoft Tenant. The link is at the far left of the toolbar. Firefox is configured with the Nephosoft vCAC tenant portal as the home page.

Now that vCAC 6.0 is fully integrated with Single Sign-On, you'll be first prompted for credentials by the vCenter SSO components and then redirected to the vCAC portal.

 

 

Lab Objective

The objective of this Module is to introduce how the new Business Management component of vCloud Automation Center can be used to provide enterprises with cost transparency and consumption visibility into your virtual infrastructure.  

This will be demonstrated through the use of the following personas:

Password for all users is: VMware1!

NOTE: Passwords are CASE SENSITIVE; User IDs are NOT case sensitive.

 

 

Use Cases

The following use cases will be covered in the remainder of this Module:

  1. Pricing vCAC Blueprints
  2. Showback
  3. Cloud Planning
  4. Budget Planning
  5. Role Assignment (Optional Exercise A)
  6. Configure & Manage vCenter(s) (Optional Exercise B)

 

 

Preconditions

The following has been pre-configured in for you in the Lab vPOD:

 

Please note: If it has not been at least 10 minutes since you started this lab DO NOT CONTINUE. Please wait a full 10 minutes before continuing into the system

 

Pricing vCAC Blueprints


Please note: that if it has not been at least 10 minutes since you started this lab DO NOT CONTINUE. Please wait a full 10 minutes from the time the lab was provisioned to start.


 

Launching vCloud Automation Center

 

To logon to the vCAC portal, launch the FireFox browser from the taskbar.

 

 

Logging in as Tenant Administrator (CloudAdmin)

 

Note: During the lab, if you need to return to the login screen, press the vCAC shortcut in the Firefox toolbar. To log in:

  1. You should be automatically placed onto the vCAC login screen
  2. In the login field, enter cloudadmin@nephosoft.com as the user name
  3. Enter VMware1! for the password.
  4. Press the Login Button

Passwords for all users will be the same: VMware1!

 

 

Self Service Portal

 

The same self service portal is used by both consumers and administrators of vCAC version 6. However you will notice, as you log in as different users, that the tabs and options which appear within the UI will depend on the roles assigned. As the CloudAdmin for Nephosoft, you will see the following options:

Standard Consumer Tabs

Additional (Administrative) Tabs:

 

 

Connect ITBM to vCenter

 

Due to the nature of VMware Hands On Labs, you will need to configure the ITBM connection to the vCenter server.  This will allow you to see the ITBM cost graphs as part of your lab.

  1. Navigate to the Administration tab
  2. Scroll to the Business Management option
  3. Click the "+" on the right-side of vCenter Server Connections
  4. Enter vc-l-01a.corp.local (note the letter "L") for vCenter Server, administrator@vsphere.local for Username and VMware1! for Password.
  5. Click the Save button

Dismiss the notification which confirms your connection is complete.  It will take a few minutes for ITBM to build the graphs for your lab.

 

 

Business Management Roles

 

The current user, CloudAdmin, has been granted the necessary Business Management Roles to review cost details with ITBM Standard. Lets take a quick look at where those roles are assigned.

  1. Navigate to the Administration tab
  2. Select Users from the left hand navigation bar
  3. Enter cloudadmin in the Search box in the upper right corner of the screen and click the "search" button
  4. Click the down arrow next to the cloudadmin account and select Edit
  5. You will be brought to the Details tab of the Cloud Admin user record. Scroll within the windows to review all of the assigned roles. Verify that the Business Management Administrator role is checked.
  6. Click Cancel to avoid making changes to the Cloud Admin account.

NOTE: If both Business Management roles are checked, the Administrator role will supersede the Readonly role. The Readonly User role is used to grant the ability to review information in the Business Management tab, but not make updates.

 

 

Business Management - Overview tab

 

Now lets take a look at information available to us in the Business Management tab, starting with the Overview.

  1. Click on the Business Management tab. This tab exposes a summary view and interactive visualizations of our Cloud Costs.
  2. In the first column we see Total Cloud Cost - This is the total aggregated cost of running our Virtual Infrastructure / Private Cloud
  3. Below Total Cloud Costs we can graphically see all of our Cost Drivers - this provides insight into the breakdown of our Capital and Operational Expenses by type.
  4. In the next column we find an Operational Analysis of what the average VM costs to run in our infrastructure. These values are derived from the comparison of expenses against current utilization, which helps our business managers determine how efficiently the cloud is running from a cost perspective. You'll also see a graphical breakdown of allocated costs vs. unallocated costs within the cloud.
  5. The last column highlights ITBM's Demand Analysis - This tracks the current utilization of the cloud and shows consumption trending over time. We'll modify the way we're analyzing demand (by tenant vs. by infrastructure boundary) in a future step and see how this impacts the Demand Analysis overview and graphs.

Note that this is a small lab environment leveraging virtualized ESXi hosts. In some cases, virtualized ESXi hosts nested within virtualized ESXi hosts. The Hands on Labs really push how far down the rabbit hole one can go!

We will make some adjustments to our cost drivers later to account for this, as ITBM's is unable to determine what underlying hardware the nested virtualization environment is running on. As a result, ITBM defaults to costs for an industry standard server.

 

 

Review Interactive Graphs

 

In many places, the graphical reports are interactive. If you hover over one of the pieces of the Cost Drivers pie chart, for example, you will see a tool tip indicating "Server Hardware: $1,200.00" or similar. You can also click on the chart to drill into details of cost drivers.

 

 

Analyze Cost Drivers, Out-of-the-Box costs for Cost Drivers

 

To view additional details around our Cost Drivers, we'll now review Cloud Costs.

  1. Click on Cloud Cost within the Business Management tab.
  2. We can now see the breakdown of Cost Drivers which are, by default, calculated using out-of-the-box cost definitions from ITBMs reference database.
  3. This page provides a graphical representation of how these costs have changed from month-to-month. Hovering your mouse over any of the data points on the monthly bar graphs will show the month and that month's cost in a tool-tip. This is a new cloud and ITBM deployment, so there is no historical data to review yet.

 

 

Cost Driver Details

 

Lets drill into the Labor cost driver for additional details. Clicking on any of the Cost Drivers will display a detailed chart of the components that make up that cost.

  1. From the Cloud Cost tab, scroll down and click on Labor
  2. Within the Labor category, we can highlight the pie chart pieces to view the Labor breakdown for a particular component. Click on Virtual Infrastructure to see the industry average of labor time spent managing virtual infrastructure on a per VM basis, multiplied by the labor rate provided by out-of -the-box standard rates.

The rates from the reference database are regularly updated by VMware and are a great starting point for organizations to use as a baseline until their own internal costs are better understood or as a comparative to what others in their industry are experiencing, but it is possible they don't align exactly with an organization's current spend. Lets examine how to update these costs with custom figures.

 

 

Editing Cost Drivers

 

Business Management Administrators can manually edit the monthly cost of all eight cost drivers from the current month onwards.

Click the "Edit Cost" link in the upper left corner.

 

 

Viewing / Overriding Out-of-Box Costs

 

Once in the Edit Cost Driver window, you'll again see the individual Cost Drivers and have access to the configuration information for each. The configuration details accessible here determine how IT Business Management Standard Edition calculates and displays costing information.

1.     Review how current costs are defined:

       You can quickly see which costs are being calculated from industry benchmark values, and which have been customized, by the color band next to the Edit monthly cost (Calculator) icon.

2.     Click on the Edit icon next to Server Hardware Costs

 

 

Edit Server Hardware  Costs

 

Clicking the Calculator icon next to the Cost Driver will display the details for that Driver on the right side of your screen. This lab is leveraging nested ESXi hosts for capacity, and while ITBM can correctly identify them, it is not possible to match the abstracted underlying physical hardware in the reference database. ITBM Standard therefore assigns an industry average physical server cost. This is not a scenario you will likely encounter in production and for the purposes of this lab, let's override that default value to see how it impacts cost allocations.

1.     Review the following details available in this menu:

2.    Click Edit

 

 

Change Name and Cost Per Server

 

  1. Edit the name of the servers: SDDC Blade Servers
  2. Change the Cost Per Server: $4150
  3. Click Done

 

 

Review Updated Cost Information

 

Lets look at the how our changes have impacted this Cost Driver:

  1. Our Server Name, Cost Per Server, Total Cost, and Current Month Depreciation values have been been updated, reflecting a new Total Server Hardware Cost per month
  2. Our Cost Source Indicator has updated to reflect the use of custom costing metrics.
  3. Click Operational Analysis to review our loaded Operational Costs updated from the new Cost Driver changes.

 

 

Analyze Operational Data

 

The Resources table under the Operational Analysis tab displays cost breakdown information for Current Month Cost, Trend, and total percentage value of CPU, RAM, storage, and Operating System (license and labor) consumption in your cloud environment. The operational analysis module generates a base rate for CPU and RAM using the cost driver components as input. These, in addition to the Storage cost drivers, are then used to attribute the total cloud cost for the month to existing virtual machines and allows you to arrive at the total cost of operating virtual machines for the month. Certain costs are directly attributed to the virtual machines (e.g. OS licenses and labor costs). These are not part of resource base rates, and are classified under the heading of OS (License and Labor).

The Operational Analysis tab allows you to:

Right now, all of the VMs present in the resource cluster are turned off, so the Utilization numbers are currently zero. It is possible for an Administrator to override the way capacity utilization impacts allocations.

  1. Click on the Edit Utilization link to view the details.

 

 

Edit Cost Allocation

 

The Edit Cost Allocation screen allows you to see the current utilization levels of Clusters and un-clustered hosts:

  1. Utilization levels are derived based on average monthly usage from vCenter
  2. The number of servers (and list of servers by clicking the number) that come from the cluster
  3. In order to compute the loaded unit cost of CPU and Memory, you can set the expected CPU value (and/or Memory Utilization):

This visualization enables you to:

4.     For the purposes of this lab, just choose the "Back to Operational Analysis" link in the upper left corner without making any changes.

 

 

Pricing Compute Resources

 

Once all of your baseline Cost Drivers have been reviewed, and updated if necessary, you are ready to publish these loaded costs to your vCloud Automation Center Compute Resources. Use these steps to get started:

  1. Click on the Administration tab
  2. Choose the Business Management option on the left side navigation menu
  3. Click the Pricing link at the top of the page

This feature will eliminate the need to:

 

 

Compute Pricing

 

  1. The Compute Pricing section of the Pricing screen allows you view the Monthly calculated costs for Memory (per GB) and CPU (per vCPU), based on the Cost Drivers we reviewed in previous steps.
  2. If you would like to adjust those costs displayed to consumers (end users) of the Catalog, you can choose to manually set prices using the radio button at the top of the screen for each Cluster and un-clustered Host.

 

 

Storage Pricing

 

  1. Scrolling further down on the same page will bring you to the Storage Pricing section.  Here you can override the Out-of-Box costs for Storage, if you chose to Manually Set Prices in the radio button at the top of the Pricing screen.
  2. The prices shown are Monthly per GB of storage.

Due to resolution restrictions on lab desktops, you may need to scroll to the right to see some of the pricing details. For the purposes of the lab, we will not modify any of the Out-of-Box pricing.

 

 

Navigate to Infrastructure Compute Resources

 

Next we want to view the Compute Resources to see how the loaded costs from Business Management will appear.  Start by:

  1. Selecting the Infrastructure tab
  2. Choosing Compute Resources from the left hand navigation menu

 

 

View Compute Resources

 

  1. Within the Compute Resources Menu, again select Compute Resources.
  2. At the top of the Compute Resources table, click Update Costs. You will need to scroll to the right to find the option at lower resolutions. Clicking this link will update the cost on all vSphere Compute Resources which are configured in the Business Management component (see Appendix B for details on how this is done).  

The costs are actually automatically refreshed once per day, but this feature allows you to refresh Compute Resource costs on demand.  We just updated hardware cost drivers, and this will immediately reflect that change on all impacted blueprints.

 

 

Confirm Cost Update

 

  1. Click OK on the Confirm Update Costs notification

 

 

Edit Cluster Site A Compute Resource

 

We want to view the costs for our vSphere Compute Resource:

  1. Scroll back to the bottom left of the Compute Resources window to expose Cluster Site A. Click on the name or hover over the down arrow.
  2. Click Edit

 

 

Compute Resource Details

 

Editing the Compute Resource allows you to see the details.

  1. Click on the Configuration tab
  2. Review the information available in this tab

Next we will view how these prices appear to consumers.

 

 

Log Out as CloudAdmin

 

Click the Logout link in the upper right corner of your browser to log CloudAdmin out of vCAC

 

 

Log In as Nephosoft QE User

 

Log in as nephqeuser@nephosoft.com, password: VMware1!

 

 

Request a vSphere Based Virtual Machine From the Catalog

 

  1. Navigate to the Catalog tab
  2. Request the Inventory Manager v5.3 Catalog Item

 

 

Pricing on Request Details

 

  1. Review the Catalog Item's Daily Cost and Lease Cost - displayed on the Request Details page
  2. The actual cost will be determined by the actual values of CPU, Memory, Lease time, # of Machines, and placement of the Virtual Machine. You can manipulate these to watch the impact to daily costs.

 

 

Log Out as NephQEUser

 

Click the Logout link in the upper right corner of your browser to log Neph QE User out of vCAC

 

Cost Showback


In this exercise, you will:

We will log back in as our Cloud Administrator who has full access to the Business Management features.


 

Log In as CloudAdmin

 

Log in as cloudadmin@nephosoft.com, password: VMware1!

 

 

Navigate to Business Management, Demand Analysis

 

  1. Click on the Business Management tab

The Demand Analysis view provides cost and usage details of CPU, Memory and Storage for Virtual Machines by Cluster or un-clustered Host (by default). This view can be configured, however, to show these details by Business Unit and Application instead utilizing vCloud Automation Center tenant constructs.

 

 

Editing the Consumer List Rules

 

  1. Click Edit in the upper left corner to change the rules for the Consumer List.

 

 

Changing the Categorization of VMs

 

The options for populating the the Consumer list are:

  1. Select Use vCloud Automation Center categorization (Tenant, Business Group, Blueprint)
  2. Click Next

 

 

vCloud Automation Center Categorization - Top Level

 

When using vCloud Automation Center categorization, you can use two tiers. The possible options are:

  1. Select Tenant as the Top Level (primary) tier
  2. Click Next

 

 

vCloud Automation Center Categorization - second level

 

  1. Select Business (Provisioning) Group as the secondary level
  2. Click Save

 

 

Updated Demand Analysis View

 

Costs are now displayed by Tenant (1) and Business Group (2).

Virtual Machines outside the Nephosoft tenant are grouped together under the "Other" category (3).

 

Cloud Planning


In this exercise, you will


 

Cloud Comparison for New Virtual Machines

 

For this exercise, you will remain logged in as Cloud Admin.

  1. Navigate to the Cloud Comparison tab.

This screen visualizes the cost of new virtual machines in Private Cloud, AWS, and Windows Azure.

 

 

Cost Details View - Private Cloud

 

  1. Hovering over the dollar values will display a popup window of cost drivers considered for cloud cost calculations.

 

 

Cost Drivers for Amazon Cloud

 

  1. Hovering over the cost under Amazon shows the cost drivers considered for running virtual machines in AWS.

 

 

Cloud Comparison for Existing Virtual Machines

 

You can compare the cost of your existing virtual machines running in your private cloud to the equivalent in the public cloud.

  1. Click on Compare existing VMs to Cloud link in the upper left corner
  2. Click on Import VMs

 

 

Choosing Existing VMs to Compare to Public

 

  1. Choose the Nephosoft tenant
  2. Select the WarehseMgr-000 VMs
  3. Click Done

 

 

Existing VMs in Private vs. Public Clouds

 

Based on current utilization levels from vCenter of the selected virtual machines, you can compare the cost of running those VMs with the same projected utilization levels in both AWS and Azure. In addition, other overhead costs are added, similar to the overhead costs in private cloud such as labor, to create a near apples-to-apples comparison.

 

 

Cost Driver Details

 

Just as in the previous comparison view, you can hover over any of the dollar amounts (1) to display the details of any of the shown cost estimates (2).

 

Budget Planning


Next we're going to look at Reports to:

Stay logged in as Cloud Admin


 

Navigate to Reports

 

  1. Navigate to the Reports tab
  2. Click on Servers to see breakdowns of the cost drivers listed on the left

 

 

Adding Cost Aspects to Servers Report

 

As you check off Cost aspects, they are added to the report with a header color matching the key next to the Checkboxes. This allows you to see how the various CapEx and OpEx costs contribute to to the total Loaded Cost of each server.

  1. Select OS Licensing Costs and Physical Server labor costs
  2. Scroll to the right on the report screen to view

 

 

Analyze OpEx Costs by Virtual Machine

 

Using the VMs view, you can visualize the OpEx costs such as labor and maintenance by Virtual Machine.

  1. Click the VMs report sub-tab to view this report type.

 

 

Exporting Cost Reports

 

Any of the reports can be exported to a CSV for import into the VMware ITBM Suite products, or in financial systems.

Cancel out of this dialog box to complete this exercise.

 

Optional Exercise A


In this exercise, you will:


 

Navigate to Users page

 

Navigate to the Users page

  1. Click on the Administration tab
  2. Select Users from the left hand navigation bar
  3. The User list will always start out empty, but you can use the Search control in the upper-right corner to search for the users you want to assign roles to. Type admin and click the magnifying glass icon
  4. Locate cloudadmin@corp.local and select Edit from the drop-down box

 

 

View Roles Assigned to CloudAdmin

 

  1. Scroll over in the window and locate the Business Management roles

As you can see, CloudAdmin has both of the available Business Management roles currently assigned. While it's not necessary to assign both, since the Administrator role will always supersede the Readonly role, it will not cause any problems to have both assigned. These roles should be used for the following:

Business Management Administrator

Business Management Readonly User

 

Optional Exercise B


In this exercise, you will


 

Navigate to Business Management Administration

 

Navigate to the Business Management Admin screen by selecting the Administration tab (1) and then choosing "Business Management" from the left hand navigation menu (2).

Here you can see a list of current vCenter Servers which are configured (3). You can remove existing servers from the list (4), and therefore from use in Business Management pricing, or you can add new servers to the list (5).

When adding new vCenter Services, you should keep in mind:

 

Conclusion


Thank you for taking time to complete the ITBM Standard module from this lab! Hopefully this has helped demonstrate how ITBM Standard can greatly assist in pricing and utilization reporting for your cloud infrastructure.


Module 4 - Publishing & Requesting Applications from the vCAC Catalog

Overview


This lab will demonstrate the ability to use the Application Provisioning features of vCloud Automation Center Enterprise to rapidly deploy applications from the same central catalog that enables IaaS, DaaS, and XaaS services. The lab will cover features of Application Director, including use cases from the perspective of both the end-user (consumer) and the administrators of the solution. The initial use cases are executed by administrators that are publishing their application blueprints through an easy to use self-service portal. Additional use cases are executed by vCloud Automation Center end users that are requesting application services.

Lab Captain:
Pete Cruz


Introduction to Scenario



 

Getting to Know the Lab Environment

This lesson is a key starting point for the rest of the Lab, do not skip it or lessons later on may not work. The vCloud Automation Center Lab highlights what is possible when a number of exciting technologies are deployed into a seamlessly integrated solution. To ensure you get the most out of this lab, we are going to take some time to review the key components.

This lab will start by taking the participant through the steps necessary to publish an Application Director (AppD) deployment profile to the vCloud Automation Center (vCAC) self service catalog. This module starts with a Deployer (usually someone from Application QA or a test engineer) creating a deployment profile. We'll then explore how vCAC administrators can define policy and control, followed by the consumer experience based on the policy changes.

This lab is intended for Cloud and Application administrators looking to help enterprise IT overcome the cloud management challenges of today

 

 

Verifying That You Are on the Control Center

 

You should see the ControlCenter Desktop when you first log into the Lab. At any point during this lab you can verify that you are on the Control Center Desktop by examining the background wallpaper.

 

 

Application Used During This Lab

 

Although Internet Explorer and Chrome are supported by Application Director and vCloud Automation Center, for continuity will be using only Firefox to connect to the AppD and vCAC portal. There is a shortcut in the Windows taskbar for Firefox that will only be visible if you are logged into the Control Center as Administrator.

Read through the rest of the introduction prior to launching Firefox and logging in. This will give all of the lab VMs and services time to properly start.

 

 

Introduction to Fictional Company: Nephosoft

 

As you work through the lab's use cases, you'll be assuming roles within a fictional company, Nephosoft, and addressing their business and IT challenges.

Nephosoft is a multi-national software company that has expanded from a niche market of developing manufacturing and logistics integration software to an enterprise application hosting firm. Nephosoft recently acquired Code Nebulous, a visionary ecommerce and security application company, with a plan to leverage Code Nebulous unique (proprietary) application and existing cloud-present customer base, bringing them to the next level.

As the Nephosoft IT team work to integrate the IT infrastructure of Code Nebulous into Nephosoft's virtual datacenters, they have identified the need for engineering and QE staff from both organizations to request and manage their own development and testing environments. The engineering teams have implemented an agile development methodology, which requires that the quality engineering team stand up new testing environments at least once per week, for each of the Nephosoft and Code Nebulous products. One of the immediate challenges with creating so many testing environments is the lack of consistency between them as the installation of all applications are done manually.

Nephosoft IT already use VMware tools within their organization to manage the vSphere infrastructure used by the engineering and QE teams, so the necessary catalogs of templates for the most commonly requested engineering environments have already been configured. Code Nebulous has just recently been given access to that vSphere infrastructure. Both organizations provision and access resources though the vCAC self service catalog. Nephosoft Applications team is looking for a way to allow end users to be able to request not just infrastructure, but also applications while maintaining a single pane of glass. The QE Manager has been struggling to find a management solution that provides the ability to consume their home grown installation scripts as well as automate the orchestration of installation across multiple machines with parameter interdependencies.

 

 

Nephosoft Fundamental IT Challenge

In order to support self-service for the engineering and QE teams while leveraging existing infrastructure and home grown installation scripts, the Nephosoft Applications and QE leadership teams have decided to implement VMware's next generation cloud management solution.

 

 

Logical Topology

The lab environment was constructed using a simple deployment configuration where all the vCAC Infrastructure provisioning and AppD system components were installed on their own virtual machines. This is a typical configuration that many companies use to deploy a production pilot or limited scale production implementation up to 2,000 virtual machines. In this configuration, the self-service portal can be accessed through a web interface from any remote device.

As configurations grow, or as the cloud becomes an essential component of an organizations core infrastructure, IT will look to distribute additional vCloud Automation Center components for greater availability and scalability. For example, a vCloud Automation Center global enterprise customer currently manages over 100,000 virtual desktops with plans for further growth. Reference architecture documents are available to customers and partners who are managing implementations for tens of thousands of machines from a single vCloud Automation Center instance.

 

 

Lab Setup

Objective
To demonstrate how vCloud Automation Center can be used to publish application blueprints from Application Director, we've preconfigured a live system running the vCloud Automation Center and Application Director platform. The initial use cases are executed by Deployers that will be publishing an AppD blueprint to be consumed from the vCAC self service catalog.

Persona

Password for all users is: VMware1!

NOTE: Passwords are CASE SENSITIVE; User IDs are NOT case sensitive.

 

 

Preconditions

Please note: If it has not been at least 10 minutes since you started this lab DO NOT CONTINUE. Please wait a full 10 minutes before continuing into the system

 

Prep Work


When dynamically spinning up thousands of lab environments, occasionally services registration can fail if a dependent service starts before others finish. As a precaution, and to ensure all services we need for this module are up and running, we're going to SSH into the Application Director appliance and reboot it.


 

Access Putty

 

We'll open an SSH session from Putty on the ControlCenter system.

  1. Click Start
  2. Launch Putty

 

 

Connect to the Applications Server

 

Connect to the Application server by:

  1. Click on appd-l-01a from the Saved Sessions list
  2. Click Load
  3. Click Open

 

 

Log into Server and Reboot

 

Log in and reboot the appliance:

  1. Login in with Username: darwin_user
  2. Password: HOLVMware1!
  3. Elevate permissions by typing: su root
  4. Enter the password: HOLVMware1!
  5. Type reboot and hit enter

Verify that you receive the message "The system is going down for reboot NOW!" and close the Putty session

 

Publishing & Requesting an App from the Service Catalog


We're now going to step through the process of publishing an application blueprint to vCloud Automation Center's self-service catalog. A few of the prerequisite steps have been done for you, such as registering the Application Director appliance with vCloud Automation Center, but we'll walk through others during the lab module as it will help you understand the integrations between the two components of vCAC.

The next steps we'll take are:


 

Log into vCAC to Manage Roles

 

We're first going to log into vCloud Automation Center to grant our Application Architect access to the Application Director portal and functionality.

  1. To logon to the vCAC portal, launch the FireFox browser from the taskbar.
  2. If not brought to the vCloud Automation Center logon page, click the vCAC Portal link in the bookmark toolbar
  3. Login to vCAC with the following credentials:

 

 

Edit the NephQEMgr User Roles

 

Once logged into vCAC as Cloud Admin:

  1. Click the Administration tab at the top of the page
  2. Click Users in the main Administration menu
  3. In the search box at the top right, type nephqemgr and click the Search icon
  4. Highlight the Down Arrow next to the user account and click Edit. Alternatively you can click the user name.

 

 

Add Application Roles to Neph QE Manager

 

1. When the Edit user: window appears, add the following roles to the Neph QE Manager user account by clicking the check boxes next to each role:

2. After adding these roles, Click Update

3. Logout of the vCAC portal by clicking Logout at the top right of the page

 

 

Navigate to the Application Director Portal

 

After launching Firefox:

  1. Click on the Application Director link in the bookmark toolbar
  2. Log into the Applications Portal using the following credentials:

Username: nephqemgr@nephosoft.com
Password: VMware1!

 

 

Select Cloud Providers from the Navigation Menu

 

We're going to pull the IaaS catalog items currently published in vCAC into the Application Provisioning portal so they can be assigned to Logical Templates within our application blueprints and used in our deployment profile.

  1. From the drop down menu at the top middle of the screen, click the Down Arrow
  2. Select Cloud Providers from the Clouds submenu

 

 

Select the Existing Cloud Provider - vCAC 6.0

 

Click on the Cloud Provider instance vCAC 6.0

This has already been configured for you, but it's addition would be a required step in a new deployment

 

 

Edit the Cloud Provider to Define New Templates

 

We can now see the connection details mapping this Application Provisioning instance to vCloud Automation Center's Nephosoft tenant. This was configured previously by the Nephosoft QE tenant admin (Cloud Admin), but we've now assigned the necessary roles to our Application Architect on the Nephosoft QE team to finish the rest of the configurations.

To automate application deployments we first need to ensure there are consumable Cloud Templates on which the applications will land. These templates must contain predefined, reusable machine images - including an operating system and any agents required for application installation and configuration. The concept of Cloud Templates translates to published vSphere based blueprints in vCloud Automation Center, vApps in vCloud Director, or AMIs in Amazon AWS. A Cloud Template will later be mapped to a Logical Template in the vCloud Application Director catalog.

Add in an existing vCAC blueprint as a new Template for use in Application Director:

  1. Click Edit on the vCAC 6.0 Cloud Provider
  2. The Templates section can now be edited, Click + New

 

 

Select the Templates to Add From our Cloud Provider

 

Let's bring in a Windows 2008 IaaS blueprint. We're going to need it within one of our applications blueprints.

  1. Select Windows_2008_R2...
  2. Click OK

 

 

Update Template Description and Save

 

You should now see the Windows template from vCAC's catalog under Templates at the bottom of the page.

  1. Edit the Description by entering: Windows 2008R2 SP1
  2. Click Save at the top of the Cloud Provisioning configuration page

 

 

Navigate to Deployment Environments

 

A Deployment Environment in Application Director represents a specific set of resources in a cloud provider. For a vCloud Automation Center cloud provider instance, this would be a reservation policy. In vCloud Director this would be an Organization vDC, and in Amazon an Amazon VPC.

vCAC may have multiple Reservation Policies that have been enabled for a tenant, representing different types of capacity for consumption (e.g. Development, Test, and Production). We need to map a deployment environment to a specific vCloud Automation Center reservation policy before we can deploy applications. When we finish creating this deployment profile, we'll be able to select it to configure the application provisioning components to deploy into underlying vSphere resources.

In the Menu at the top of the page, click the down arrow

  1. Select Deployment Environments under the Clouds submenu.

 

 

Create New Deployment Environment

 

Lets create our first Deployment Environment by clicking + New at the top of the Deployment Environments window.

 

 

Configure Deployment Environment

 

We'll now configure our Deployment Environment to utilize the existing vSphere reservation policy allocated to the Nephosoft QE business group in vCAC.

  1. Enter a Name for the environment: vCAC - Production vSphere
  2. Click the down arrow in the Cloud Provider field and select: vCAC 6.0
  3. Click Select next to the Reservation Policy field

 

 

Select vSphere Reservation Policy

 

The Select Reservation Policy dialog box will appear.

  1. Choose: Select from the list of reservation policies
  2. Select vSphere from the list
  3. Click OK

 

 

Save Deployment

 

  1. Click Save at the top right of the window to commit our changes.

We've now assigned the vSphere reservation policy to this Deployment Environment.

 

 

Update Logical Templates

 

The Catalog is a library that abstracted components that are used to build application deployment blueprints. One of these component categories is Logical Templates, which are pointers to the Cloud Templates we've already mapped. We need to create the link between these pointers and the Cloud Templates we've identified.

  1. From the drop-down menu at the top of the screen, select Logical Templates under the Catalog submenu.

 

 

Edit Windows 2008 R2 SP1 Logical Template

 

  1. Scroll to the end of the list of Logical Templates
  2. Click on W2K8 R2 Enterprise SP1 (not the Windows template with SQL Server)

 

 

Select the 1.0.0 Version of the Logical Template

 

A Logical Template can maintain a history of changes between versions.

  1. Click on version 1.0.0

 

 

Create a New Cloud Template Mapping

 

  1. At the top of the page, click Edit to modify v1.0.0 of the Windows template
  2. Click + New from the Cloud Template Mapping section
  3. Under Cloud Provider Name, select vCAC 6.0
  4. Under Cloud Template, select Windows_2008_R2_SP1
  5. Click on Save at the top right of the page to save our configuration changes.

 

 

Navigate to Applications

 

Now that we have the components we needed mapped, lets publish an Application that utilizes our Windows Cloud Template from vCloud Automation Center.

  1. From the drop-down menu at the top of the page, select Applications

 

 

Select Clustered Dukes Bank App

 

  1. Click on the Clustered Dukes Bank App

 

 

Choose Application Version

 

After you have selected the application, we'll choose the version we want to make available to users in the vCAC catalog. Version 3.5.0 is based on a Windows Platform, while earlier versions where Linux based.

  1. Click on Application Version 3.5.0

 

 

Add a new Deployment Profile

 

Application blueprints are portable across deployment environments because of the abstraction provided by Deployment Profiles. Deployment Profiles are used to define the linkages between the logical constructs of an application blueprints and cloud deployment environement specific details.

We will create a new deployment profile and use it to publish a catalog item to vCAC's self-service catalog.

  1. Press the + New button under Deployment Profiles

 

 

Name the Deployment

 

  1. Enter a new name for the Deployment Profile e.g. “Clustered Dukes Bank v3.5.0
  2. Click Deploy

 

 

Map VM Templates

 

While configuring a Deployment, we'll:

The first step is to update our Map Details. They should look like the screen shot above and is mapping the Application Director's logical template with the template that it will provision through vCAC when the application is requested.

  1. Click Map Details under the Deployment Environment section.
  2. Update the Cloud Templates for each Node under VM Templates by selecting Windows_2008_R2_SP1 from the drop down.
  3. Set all of the Storage fields to Auto
  4. Click Next

 

 

Enter Required Fields Not Populated by Blueprint

 

Our Application Architect needs to update a few mandatory fields that were not populated during the blueprint creation process because they are specific to a particular OS platform and cloud environment.

Under Step 2: Application Properties

  1. Select Service
  2. Click SQL_Server_2012
  3. You'll notice that MSSQL_SETUP_LOCATION is currently blank, but listed as a required value. Though this can be overridden during the provisioning process from vCAC, lets enter in a default value of "C:\Program Files\Microsoft SQL Server\" into the New value field

 

 

Update Java Install Directory on JBossAppServer

 

  1. Make sure Service is still selected and click on JBossAppServer
  2. Update the New Value field for JAVA_INSTALL_DIR to "C:\Program Files\Java"
  3. Click Next

 

 

Review the Execution Plan

 

This screen details the flow and installation order of all components. Dotted lines show how parameters from one machine (like hostnames or IPs) are presented as input parameters to other machines so that they can communicate.

  1. When done reviewing this screen, press Next

 

 

Review, then Publish

 

The final screen is a review page before deployment. You have the ability to review all of the parameters of the machines that will be provisioned.

  1. When you are done reviewing, press the Publish button

 

 

Provide a Name to Publish

 

In the publish screen, enter a name as you want it to show up in the vCAC catalog.

  1. Enter Name: Clustered Dukes Bank App v3.5.0
  2. Enter Description: Clustered Dukes Bank App on Windows Stack
  3. Click OK

Our Application Blueprint with the deployment specific details has now been pushed to vCAC as a catalog item. Next we'll configure it and make sure the proper entitlements have been set.

 

 

Log out of Applications

 

We are done in the Applications interface. You can now logout of Applications by clicking the selecting Logoutfrom the top right of the screen.

 

 

Log into vCAC as CloudAdmin

 

  1. If you closed the Firefox session, reopen it and ensure you're at the vCAC login page.
  2. If not, click the vCAC Portal link in the bookmark toolbar.
  3. In the login field, enter cloudadmin@nephosoft.com as the username and VMware1! for the password, then click Login

 

 

Enabling the Catalog Item

 

In order to have the Dukes Bank App be requestable from the vCAC catalog, we first have to activate the catalog item and then add it to an entitlement. The next steps will walk you through this process

  1. Click on the Administration tab
  2. In the left side menu, drill down to Catalog Management> Catalog Items
  3. Find and click on down arrow next to the Clustered Dukes Bank App v3.5.0 catalog item. Click Configure or simply click on the item name to edit it

 

 

Set the Configuration Item Service

 

  1. In the Service field, select Applications. This will associate th Dukes Bank App with the Applications service type in the catalog.
  2. Click the Update button to save.

You will be brought back to the Catalog Items screen.

 

 

Navigate to Entitlements

 

  1. In the left hand side menu, choose Entitlements.
  2. From the Entitlements screen, choose the Nephosoft QE entitlement to edit it.

 

 

Confirm Applications Entitlement

 

  1. Click on the Items & Approvals tab in the Edit Entitlement window.
  2. Verify that this entitlement has already enabled access to the Applications service category. If this is configured, users that are part of this entitlement will inherit access to the Clustered Duke's Bank catalog item.
  3. Press Cancel to exit out of this screen

 

 

Confirm Clustered Dukes is Now Visible in the Catalog

 

  1. Click on the Catalog tab
  2. Select the Applications option from the left side menu
  3. Note that the Clustered Dukes Bank catalog item is now available

For this lab exercise we will only verify that the Application Blueprint is available. Requesting the application will result in a failed deployment due to restrictions in the HOL labs.

 

Summary


Congratulations on Completing the Publishing & Requesting Applications from the vCAC Catalog lab module!

This lab demonstrated how the vCloud Automation Center's catalog can help organizations rapidly provision applications on top of infrastructure. Organizations that have deployed the solution have achieved the following benefits:


Conclusion

Thank you for participating in the VMware Hands-on Labs. Be sure to visit http://hol.vmware.com/ to continue your lab experience online.

Lab SKU: HOL-SDC-1321

Version: 20140429-175720