Lab Overview - HOL-1884-01-HBD - VMware Cloud Services - Getting Started
Note: It will take more than 90 minutes to complete this lab. You should expect to only finish 2-3 of the modules during your time. The modules are independent of each other so you can start at the beginning of any module and proceed from there. You can use the Table of Contents to access any module of your choosing.
The Table of Contents can be accessed in the upper right-hand corner of the Lab Manual.
This lab provides a look at VMware Cloud Services and the features that will allow you to get better insight into your current cloud usage.
Note: A My VMware user account is required to access this lab.
The Student Check-In chapter will cover the My VMware requirements and how to access Cloud Services.
Lab Module List:
This lab manual can be downloaded from the Hands-on Labs Document site found here:
This lab may be available in other languages. To set your language preference and have a localized manual deployed with your lab, you may utilize this document to help guide you through the process:
During this module, you will input text into the Main Console. Besides directly typing it in, there are two very helpful methods of entering data which make it easier to enter complex data.
You can also click and drag text and Command Line Interface (CLI) commands directly from the Lab Manual into the active window in the Main Console.
You can also use the Online International Keyboard found in the Main Console.
In this example, you will use the Online Keyboard to enter the "@" sign used in email addresses. The "@" sign is Shift-2 on US keyboard layouts.
Notice the @ sign entered in the active console window.
When you first start your lab, you may notice a watermark on the desktop indicating that Windows is not activated.
One of the major benefits of virtualization is that virtual machines can be moved and run on any platform. The Hands-on Labs utilizes this benefit and we are able to run the labs out of multiple datacenters. However, these datacenters may not have identical processors, which triggers a Microsoft activation check through the Internet.
Rest assured, VMware and the Hands-on Labs are in full compliance with Microsoft licensing requirements. The lab that you are using is a self-contained pod and does not have full access to the Internet, which is required for Windows to verify the activation. Without full access to the Internet, this automated process fails and you see this watermark.
This cosmetic issue has no effect on your lab.
Please check to see that your lab is finished all the startup routines and is ready for you to start. If you see anything other than "Ready", please wait a few minutes. If after 5 minutes your lab has not changed to "Ready", please ask for assistance.
This article will provide guidance on how to gain access to VMware Cloud Services. You will locate the Student Check-In page, search for your My VMware email address, validate and be redirected to the VMware Cloud Services Welcome page.
During this process you will receive an email invitation from VMware Cloud Services. This email can be ignored & deleted. Below are the steps to validate and gain access to the lab.
Only My VMware email addresses are granted access. See the Troubleshooting section below for common fixes.
Open Chrome Browser
Your My VMware email address must match the email address you used to login to Hands-on Labs.
If your email address is returned AND it's the same as your My VMware email address, Click to Validate
Click to Validate will 1) grant you access to cloud services, 2) send you a confirmation email, 3) redirect you to the VMware Cloud Service sign-in page.
Visit the Troubleshooting section at the end of this modue if help needed.
If you are a VMware employee you will be redirected to Workspace ONE for password or RSA passcode.
Click Forgot Password if your password needs to be reset. Access reset emails from your personal device.
This is the Console landing page which provides navigation to any cloud services you have subscribed to.
In this lab, you will have access to VMware Cost Insight, VMware Discovery and VMware Network Insight. Enjoy!
When this lab ends another email is sent letting you know access has been removed. You can always take the lab again to regain access.
If your email address was not found with a running lab please review these options to resolve.
Message after Click to Validate
After Click to Validate you are returned to the Student Check-In page with a highlighted message
Invalid Email address!
The searched email address was not found in My VMware.
You must create a new My VMware account that matches your Hands-on Labs email address. Click Register here and create a new account. Complete all required fields. Validate the new email address from your personal device. Return to Student Check-In and Search again.
Otherwise 1) End lab, 2) logout of Hands-on Labs catalog/station, 3) login with a My VMware email address that is registered with Hands-On Labs, 4) Enroll in lab again.
Your VMware profile is incomplete
Your My VMare email address was found but there are missing fields in the profile. Login to My VMware, Edit Profile and look for required fields that are missing information.
First Name, Last Name, Department, Job Role, Industry, Business Phone, Address, City, Zip Code and Country are mandatory fields.
Make sure to SAVE your profile before trying the Click to Validate again. Sometimes a few minutes is needed before profile changes are active.
Close and re-open Chrome browser if Click to Validate is returning same response after profile saved.
Your My VMare email address was found but you have not finished activating the account. Use your personal device and check for an email to activate the email address. Click to Validate again once activated.
If you searched for your email address and this response is returned please END your lab and try again later. Each student is assigned a cloud services organization (org). When your lab started all these orgs were in use.
A few additonal options will be shown.
The VMware Cloud Services interface is better used at a higher resolution than the default 1024x768
If you are already a VMware Cloud Services customer, it may be necessary to set a default organization.
Module 1 - VMware Discovery (15 Minutes)
Visibility across all clouds
Every cloud has a unique way of sharing data. VMware Discovery understands the intricacies of different public and private clouds and automates the tedious process of building those cloud integration points so that you can quickly gather the inventory data necessary for finding cloud insights.
Continuous and automated collection
Once configured, VMware Discovery continuously monitor different clouds for any changes in inventory. With Discovery, you will never lose sight of your cloud resources.
See your cloud the way you want!
VMware Discovery gives you the flexibility to organize cloud resources into custom groups so that you can think about your cloud inventory and associated insights in ways that mirror your business needs.
Follow the Student Check-In process if you have not already received access to the Console Page.
Under VMware Discovery click OPEN
VMware Discovery is an automated cloud inventory detection system that brings together inventory information from multiple clouds and makes it easy to search and identify workloads. Using native cloud tags and properties that have already been defined, Discovery allows organization of cloud resources in ways that mirror business needs.
Take a moment to explore the Summary section.
This section of the interface displays the Cloud resources discovered by the service.
Observe the details provided by VMware Discovery
The Filter is a powerful tool used to examine, group and ultimately report on cloud resources.
All the machines discovered that are running in Amazon Web Services should be displayed. You should notice the item count change next to the Resources title.
These groups are dynamic and will automatically populate new VMs added through the cloud provider that match the search.
The Filter should now show Cloud: Amazon Web Services and Name: *JIRA*.
Any virtual machine that is running inside Amazon Web Services with JIRA in the name should now be clearly visible.
This will save the filter as a Resource Group for future use. Resource Groups can also be used the Cloud Costing Service to provide fine-grained cost analysis of cloud resources. We'll go into this in more detail in the next module.
At the filter bar in the Resources section click Filter and then click Tags.
Module 2 - VMware Cost Insight (45 Minutes)
VMware Cost Insight is a cost monitoring and optimization service for public and private clouds that helps IT analyze and track cloud spend, identify key cost drivers, find savings opportunities and communicate the cost of services to the business. Cost Insight provides granular visibility into cloud costs so that IT leaders can map investments to strategic business priorities and ensure cost transparency.
Make intelligent business decisions
VMware Cost Insight provides IT granular cost visibility to precisely attribute costs to applications and LoB teams. With a better understanding of both total cloud costs and key drivers, IT leaders can map investments to strategic business priorities, ensure cost accountability and communicate the value of services delivered to the business.
Avoid blind spots Monitor both public and private cloud costs
With significant IT investments and expenses incurred in both public and private clouds, you simply cannot overlook or underestimate cost of operations in any one of these clouds. Cost Insight provides comprehensive visibility necessary to monitor, compare and optimize all costs, whether public or private.
Lower your cloud spend
VMware Cost Insight helps quickly identify hidden cloud waste within both public and private clouds to lower public cloud costs and free up data center capacity.
Follow the Student Check-In process if you have not already received access to the Console Page
Under VMware Cost Insight click OPEN
VMware Cost Insight can also be accessed from the My Services drop-down
On the initial Dashboard, VMware Cost Insight shows costs over time. Each color signifies the cost data from different cloud services. The costs projection for the next month is also displayed.
The bottom left section shows Inventory Distribution Across Clouds from the the different cloud services.
The bottom middle section shows Most Expensive Groups that are being monitored.
The bottom right section shows Expense Distribution Across Clouds in a pie graph of costs per provider.
Click the X to remove the current filter.
Click into the filter bar and select Group.
Select All AWS Machines and then click off of the area.
This area show us the current trend for this group. Hovering over the graph will show you details for costs per day.
The navigation items above the Summary allows viewing the cost information about a specific cloud provider.
Private Cloud - Private Cloud is a logical name for a group of vCenter Servers, defined by the administrator. It enumerates the Total Cost of ownership as defined by server hardware, storage, licenses, etc.
A number of management features are available in Cost Insight.
At the bottom of the page is a list of VMs that have a recommended action against them.
Please proceed to Module 3, which covers VMware Network Insight.
Module 3 - VMware Network Insight (45 Minutes)
Comprehensive network visibility across public and private clouds
VMware Network Insight is purpose-built for network virtualization and public cloud security. It provides complete network visibility into all application traffic, so that you can understand application dependencies, plan security and troubleshoot issues across AWS and VMware clouds.
Get the most out of your investment in VMware NSX
VMware Network Insight helps build your micro-segmentation strategy and delivers actionable recommendations for quickly deploying and getting value out of VMware NSX. With Network Insight, manage and troubleshoot NSX deployments at scale using standard networking knowledge without any additional training.
Easy to use and scale
VMware Network Insight is search driven. Simply type a network or security query in plain English language text to find deep insights. The service is agent-less, which makes it easy to maintain and scale as your cloud infrastructure grows over time.
Deployment options Choice is yours!
VMware is all about choice. If you prefer SaaS and want a consumption based model, you can use Network Insight as a service by requesting access today. If you want the flexibility of deploying Network Insight in your data center and prefer a perpetual licensing model, you can get the same functionality in the form of vRealize Network Insight.
VMware Network Insight is a network and security analysis service purpose-built for software-defined data centers and public clouds. VMware Network Insight provides comprehensive network visibility and granular understanding of traffic flows between applications to enable cloud security planning and network troubleshooting. Best practices checks, intuitive UI and search simplify NSX administration, making it easier for cloud administrators to manage and troubleshoot NSX deployments at scale.
Follow the Student Check-In process if you do not already have access to the console.
Click Open on the VMware Network Insight section.
You can also access VMware Network Insight from My Services
VMware Network Insight can plan security in Amazon Web Services by VPC or tag. This example will demonstrate how to discover firewall rules for an Amazon VPC. An Amazon Virtual Private Cloud (Amazon VPC) provisions a virtual network in a logically isolated section of AWS.
When the VMware Network Insight portal login completes, the first screen will show a search bar at the top
Note the Traffic Distribution (by Total Bytes) section. It is an easy way to see metrics about network traffic.
Focus on the Left-hand side of the Plan Security page on the Micro-Segments pane. The Micro-Segments pane can be used to generate rules for import into firewalls like VMware NSX.
Note that segmenting flows can be achieved using views that focus on VLAN/VXLAN, Application, Tier, Subnet, Folder, Cluster, VM, Port, Security Tag, Security Groups, IPSet or VPC.
An Amazon Virtual Private Cloud (Amazon VPC) provisions a virtual network in a logically isolated section of AWS.
Note that typing plan AWS VPC 'ccio-east-00' in the Search Bar would obtain the same results.
Now display the AWS VPC 'ccio-east-00' by VM.
Now the AWS VPC 'ccio-east-00' lists each of the VMs and shows flows between them.
Explore the Services in this group, the External Services Accessed and Recommend Firewall Rules.
Network Insight includes advanced analytics that collect and display configuration data from all the components involved in the overlay and underlay of the network. Data is collected in realtime. Network Insight can gather intelligence from the network and all the components involved in sending and receiving network traffic between two objects.
Network Insight presents this in a smart user interface, and makes problem determination and visibility of the firewall and network configurations very easy.
This Section will utilize the "Path and Topology" feature in Network Insight to get 360 degrees of visibility into the network. The "Path and Topology" view can also extend to hosts, L3 networks, security groups etc., but this section will focus on the path.
From the main console:
In the Path box:
Note that same search could been completed by typing out and selecting each word in the string VM 'bca-client' to VM 'IIS-WebApp1' in the main search bar and selecting each word as it auto-populated. As users gain proficiency with Network Insight, the search bar is often faster than using UI elements.
In the VM Path Topology, a trace route-like visual representation of the path is displayed.
Note that each object on the path can be hovered over for details.
Note that an exhaustive description of Network Insight's path capabilities is available in vRealize Network Insight HOL 18XX.
Network Insight has the capability to
From the main console:
In the Topology - VMware NSX Manager box:
Note the various objects included in the topology diagram to the right.
The NSX Checklist Rules -All is an easy place to ensure NSX is configured correctly.
This concludes the Network Insight Module, Be sure to check out the extended Network Insight Lab HOL-1828 to learn more.
Module 4 - VMware Log Intelligence (30 Minutes)
Log Intelligence offers unified visibility across private clouds and AWS, including VMware Cloud on AWS, to provide deep operational insights and faster root cause analysis. It adds structure to unstructured log data, provides rich dashboards and delivers innovative indexing and machine learning based intelligent grouping for faster troubleshooting.
Rapidly troubleshoot your SDDC
Quickly understand the health of an SDDC environment by identifying anomalies across infrastructure and applications. Out-of-the-box dashboards for VMware SDDC solutions such as vCenter, NSX, and vSAN as well as robust log aggregation and analytics accelerate troubleshooting.
Monitor and manage log data at scale
Log Intelligence ingests logs in a secure and efficient manner and delivers sophisticated analytics. Log Intelligence has enterprise-class scalability, designed to handle all kinds of machine generated data and delivers near real-time monitoring.
Support for VMware Cloud on AWS
Analyze VMware Cloud on AWS audit logs as well as vCenter logs with quick and easy integrations. Log Intelligence also offers AWS cloud native application troubleshooting support.
Follow the Student Check-In process if you do not already have access to the console.
Click Open on the VMware Log Intelligence section.
You can also access VMware Log Intelligence from My Services
When starting with Log Intelligence you will deploy a data collector into your private datacenter. The Remote Data Collector (RDC) is used as a log stream proxy to encrypt and compress log data before sending it to the Log Intelligence service. For this lab an RDC has already been deployed so for this module we will walk-through the process of deploying an RDC but will not actually deploy one.
The Data Collectors page shows a list of the RDCs which have been deployed and collecting data for your instance of Log Intelligence.
This is the Data Collector Setup screen. This screen will walk you through the process of deploying the data collector in your private data center.
This final screen in the remote data collector deployment process shows valuable information about traffic flow and configuring infrastructure to the Log Intelligence data collector.
This concludes this lab module. In this module you walked through the process of deploying a remote data collector (RDC) into your private data center. The RDC is the appliance that proxies you log data stream into Log Intelligence for analytics.
In the next module you will get familiar with the user interface of Log Intelligence to see all the great capabilities of the solution.
In this module we will walkthrough the user interface for Log Intelligence. After completing this module you will have the necessary understanding of all the features that make up the Log Intelligence solution.
Navigating Log Intelligence is very easy by using the navigation pane on the left side of the screen. We will be walking through the Home screen to start.
The first section of the Home screen we will focus on is the quick search bar. The quick search bar is an easy way to create text based query against log in Log Intelligence. You can take anything from a host name to a general word and Log Intelligence will try to assist with the search with auto-complete assistance as well as show you the number of entries found matching your text search.
Next let's take a look at the Recent Alerts widget on the Home Screen.
The Event Observations widget is a collection of queries that VMware has put together to quickly see if there are any anomalies in the environment. If there is a large spike or dip in the number of events for one of the specific observations that graph will present itself at the top of this widget.
The Event Observations screen populates with common queries that have seen spikes in the number of occurrences. Hovering your mouse over the charts will show the count of events at the given time. You can click on the name of any of the widgets to launch into the Log Explorer screen.
You are now in the Log Explorer screen of Log Intelligence. Because we clicked on the vSphere Errors widget from the Event Observations screen we are brought to Log Explorer in the context of the query that makes up that widget. This is just one example of the many advanced queries that are provided out-of-the-box in Log Intelligence. We will look at the list of those queries later in the walkthrough. For now let's clear this query and continue to get familiar with the Log Explorer screen.
Click on the CLEAR ALL link.
Clicking on the drop down chevron on one of the log entries with provide more details on the specific entry including fields that were extracted by Log Intelligence.
The Fields area breaks down the indexed and content sections of the collection of logs as a result of the query. These fields are interactive and allow you to drill down to specific logs based on things like hostname for example.
If you have the administrator role for Log Intelligence you will be able to save your created query as well as create alert definitions from the query.
This dropdown menu provides several other options that can be performed on your created query:
Click out of the menu area to close the dropdown.
Let's take a look at the PINBOARD feature of Log Intelligence. The Pinboard is a great way to bring up several queries at the same time and compare then to each other. To show this capability we are going to create three queries to search for errors for three ESXi hosts in a cluster to see if any of the three host are seeing more errors than the others. This is a quick way to quickly pinpoint which host in a cluster might be having issues.
You will see the query show up on the Pinboard.
We are now going to repeat the above steps two more times.
You now can see that there are three queries on the pinboard. Let's compare these three queries.
You are now on the comparison screen where you can see and compare the queries that were on the Pinboard. In this example, again, we are looking at the three hosts in a cluster to see which on is seeing more errors than the others to try to pinpoint which host might be causing issues.
Note: The Pinboard is not permanent. This means when you log out of your Log Intelligence sessions the Pinboard is cleared.
Click on the the icon that looks like an odometer to continue the walkthrough to the Dashboard screen.
The Dashboard screen is used to put interesting queries you would like to quickly be able to reference at any time. You must be an administrator to be able to add queries to the dashboard. In this example the three host error queries you did previously have been pre-saved to the dashboard screen.
Click on the navigation pane to expand it out. Then click on Recent Alerts.
The Recent Alerts screen provides a sequential list of all alerts that have triggered in Log Intelligence. List list will go back as far as 30 days.
The Alert Details screen gives you all the pertinent information about the triggered alert.
Click on Recent Alerts in the navigation pane to return to the Recent Alerts screen.
Again, click on the three dot icon next to one of the alerts in the alerts list.
You are now on the Alert Definition screen. Here you can see and edit the alert.
Note: Only a Log Intelligence Administrator role can edit alerts. Also out-of-the-box alerts cannot be edited but they can be cloned which we will discuss later in this module.
Again, click on Recent Alerts from the navigation pane to return to the Recent Alerts screen.
Again, click on the three dot icon next to one of the alerts in the alerts list.
From then navigation pane select Alert Definitions
You are now on the Alert Definitions list screen. Here you can see the the over 75 out-of-the-box alerts that come with Log Intelligence as well as any custom alerts defined by a Log Intelligence administrator. These out-of-the-box alerts cover VMware solutions such as vSphere, NSX, VSAN. More solutions are being added regularly.
In the final portion of the walkthrough we will look at the notification options that come with Log Intelligence.
Log Intelligence comes with a built-in SMTP server. You can use the built-in server or configure Log Intelligence to use your corporate SMTP service.
Let's at the second notification option in Log Intelligence.
Webhook are a great way to integrate Log Intelligence with any other system in your infrastructure that can accept REST API calls. For example you may configure a webhook to work with vRealize Orchestrator to trigger a workflow action in the event that an alert in Log Intelligence is triggered.
Using webhook can extend Log Intelligence to any system in your environment that can except RESt API POST.
In this module you walked through the user interface for Log Intelligence. From the Home screen, to Log Explorer screen, to configuring alerts and notifications you can see that Log Intelligence is a simple way to aggregate all your SDDC logs into an easy to use and effortless log analytics SaaS solution.
Thank you for participating in the VMware Hands-on Labs. Be sure to visit http://hol.vmware.com/ to continue your lab experience online.
Lab SKU: HOL-1884-01-HBD