Posts tagged VMware

VMware IT Academy to change

0

VMware has informed academies worldwide that they will no longer be able to offer classes through Continuing Education programs as of July 31, 2018.  Additionally, VMware is not going to allow academies to teach the official Install, Configure and Manage and/or Optimize and Scale classes as of July 31, 2018. This includes the cheap option to get your VCP mandatory training via Stanly Community College (SCC), as written down before.

A new VCA level course that will fulfill the class requirement for VCP certification will be available via an option in our curriculum program.  More details will be available later this year. But already known is that prices will go up fast. For SCC this means  $918.25 for out of state students, whilst the current pricing is around $185.

SCC is committed to providing students with affordable, accessible and excellent IT training.  We regret that the changes VMware is making to the program increase student costs and limit course availability.  If you use VMware products in your environment and are not happy with the changes VMware has made to the VMware IT Academy program, we suggest you inform your Dell/EMC/VMware representatives of your dissatisfaction with the changes.

SCC will offer two more courses, one starting in March and the other in May. Add yourself to the waiting list on this website if you were planning the (VMware approved) VCP training via Stanly.

Cheapest way to VMware VCP

1

The cheapest route to become a VMware Certified Professional (VCP) would be to attend a mandatory 5-day classroom training with a VMware Authorized Training Center. Classroom trainings will cost you about 3000 euro/dollar and if none is close by, travel and hotel expenses. Some VATC’s offer online classrooms but you still pay the same amount of money to attend a training to hear stuff from a professional trainer (read; an ex sysadmin who lost contact with the real world out there for over 10 years) telling you stuff you already knew. It’s not worth the 3000. And, as a freelance professional, it would be even more since you’d rather bill the customer let’s say 40 hours * 75 euro is another 3000 euro’s. Yes. Classroom trainings are expensive.

There is a cheaper alternative: follow a self-paced, online class at Stanly Community College. This does meet VMware’s requirements and will cost you only $185. Courses are made to attend after working hours and spread out in 6 weeks. And, as a bonus, you’ll get a discounted exam price paying only $70 for the Pearson VUE exam. One catch: there is a waiting list. So you have to wait some weeks / months till there is a free spot. But this is the ideal route to become a VMware Certified Professional for people who are paying for the training and certification themselves. Have a look here for information and reserve your spot on the waiting list over here.

Install VMware VAAI support for Synology

0

In my home lab I’m using Mac Mini’s as ESXi-server and a Synology NAS for storage (besides the SSD’s in de Mac Mini’s itself). The more expensive Synology models support VAAI for VMware. VAAI stands for vStorage APIs for Array Integration and with this support you can offload particular tasks from ESXi to the storage.

To install VMware VAAI support for Synology:

  1. Download the required package
  2. Enable SSH support on the ESXi node
  3. Put the ESXi node into maintenance mode
  4. (Win)SCP transfer the vib to the ESXi hosts /tmp
  5. SSH to the ESXi node, and type in the command:

    esxcli software vib install -v /tmp/esx-nfsplugin.vib –no-sig-check

  6. Reboot the ESXi host

Congratulations. Your ESXi node now has VAAI support.

Update ESXi to 6.5 update 1

4

I’m using a standalone Mac Mini with VMware vSphere (ESXi) on it. So for that reason I’m not able to use the update manager to upgrade the host. Last week I’ve upgraded version 6.5 to v6.5 update 1. See this blog for details about how to do that. The one-liner to use via SSH is:

esxcli software profile update -d https://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml -p ESXi-6.5.0-20170702001-standard

After a reboot you should be able to run vSphere 6.5 update 1 (with an upgraded new web=interface on https://<ip>/ui).

In my case I had an error with updating. There seemed to be to less space on the USB stick I’m booting from. The error message wasn’t clear about this. After rebooting the ESX-host and trying again, it gave me this error.

 [InstallationError]
 [Errno 28] No space left on device
       vibs = VMware_locker_tools-light_6.5.0-0.23.5969300
 Please refer to the log file for more details.

The solution was to change the default swap location via the web-interface (Host > Manage > System > Swap from ‘Datastore: none’ to ‘Datastore: LocalSSD’ (LocalSSD is just my name. It can differ in your set-up.

Update ESXi standalone to 6.5

1

To update your standalone lab box to the latest ESXi version, first enable SSH. Then put all the VM’s into maintenance mode and log in via SSH. Use the esxcli command to update to the latest version (mind the build numbers) by using your internet connection. So no hassle with packages, downloads, etc.

Open the firewall if needed:

esxcli network firewall ruleset set -e true -r httpClient

Update the box (this will take 5-10 minutes if using slow USB stick as storage)

esxcli software profile update -p ESXi-6.5.0-4564106-standard -d https://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml

Reboot the box, get coffee and login afterwards. You’re box is updated to latest-and-greatest. Don’t forget to update VMware Tools on the guests if needed.

VMware Certified Associate

0

I haven’t update my VCP since version 3.5 Last week I noticed you could take the VMware Certified Associate exam for free with online delivery. Without learning I passed. Guess after building all the clusters, including updates to v5.5, the knowledge level is still okay.

VMware-VCA-DCV

Debugging VMware vSphere host profiles

0

Last weeks I’ve built a new VMware vSphere 5.1 cluster based on diskless Dell M710HD blades. When creating a host-profile to push configurations to all members (servers) of the cluster to keep consistency I’ve noticed two out of 16 blades did not comply with the created profile, showing these error messages:

  • Host state doesn’t match specification: device mpx.vmhbaXX parameters need to be reset
  • Host state doesn’t match specification: device mpx.vmhbaXX Path Selection Policy needs to be set to default for claiming SATP

Googling around brought me to VMware KB2002488 but unfortunately this didn’t solve the compliance issue either. Debugging further and comparing a compliant and non-compliant server brought me to the Dell iDRAC-interface. The non-compliant server had the virtual media drive (forced) attached. To solve this issue, log in via iDRAC, select the Virtual Console/Media tab, sub Configuration and choose Auto-attach in the Virtual Media drop down menu. Now rescan the host profile and your server should be compliant.

iDRAC virtual media causes problems with VMware host profiles compliance

iDRAC virtual media causes problems with host profiles compliance

Enable SSH and SNMP on ESXi 5.1

8

This is a short tutorial on how to enable SNMP om your ESXi (v5.1) box the easy way, so you can add it in your favorite monitoring tools like Zabbix, Observium, PRTG, etc. You can do this on the console, but if your server is located in the data center and you don’t have KVM-access this will help you. First of all enable SSH on your box.

Enabling SSH on ESXi

  1. Connect with the vSphere client to your node
  2. Go to the configuration tab, then select Security Profile
  3. Select Properties with Services, then select SSH Server
  4. Click Options and select Start and Stop with host
  5. Click the Start button once to start the service for now

Opening the firewall to allow SSH connections

  1. Connect with the vSphere client to your node
  2. Go to the configuration tab, then select Security Profile
  3. Select Properties with Firewall, then select SSH Server
  4. Click SSH Server, select Firewall and allow an IP-range

You’ll get an annoying alert on the Summary tab of the vSphere client. To suppress this warning, go back to the Configuration tab and select Advanced Settings. Select UserVars and find UserVars.SuppressShellWarning. Set this value to 1. You’re done enabling SSH remotely. Now let’s configure SNMP.

To enable SNMP, SSH to your ESXi box. Windows users can use PuttY, Linux and Mac users the native Terminal. Log in as root@your.hostname.tld and enter the password. Paste these commands to the command-line of your ESXi box:

esxcli system snmp set -c public
esxcli system snmp set -l warning
esxcli system snmp set -e yes

That’s it. Both SSH and SNMP are enabled now.

VMware vSphere 5.1 Single Sign On (SSO) and SQL 2012

2

When installing or upgrading to VMware vCenter 5.1 you need to run a script on your existing database if you don’t go for the bundles Express Edition of Microsoft SQL Server 2008R2 Express. In my case I’ve used a dedicated Microsoft SQL 2012 Standard Edition server.

VMware wants you to run an SQL query located on E:\Single Sign On\DBScripts\SSOServer\schema\mssql called rsaIMSLiteMSSQLSetupTablespaces. Unfortunately this script used SQL syntax that isn’t supported by SQL server 2012. And with not supported I mean the Stored Procedures in the end of the script. Replace these lines in the bottom of the script with the ones below

EXEC SP_DBOPTION 'RSA', 'trunc. log on chkpt.', true
EXEC SP_DBOPTION 'RSA', 'trunc. log on chkpt.', true
ALTER DATABASE RSA SET AUTO_SHRINK ON
ALTER DATABASE RSA SET RECOVERY BULK_LOGGED

There you go. The query should run without errors on SQL Server 2012.

 

Changing vSphere Web Client certificate

0

So, you upgrades to VMware vSphere 5 and installed the Web Client. Welcome to the club. Now it’s time to change the SSL certificate from self-signed to something recognized as trusted by your browser. In my case there is already a valid wildcard certificate for *.domain.tld so let’s use this one.

First, find your private key, the certificate file and the chain-certificate. I’m using Linux myself, but openssl is available for windows to. Let’s copy them together in a working directory.

mba:demo randy$ ls -lha
total 24
drwxr-xr-x 5 rtenhave staff 170B Aug 20 13:05 .
drwxr-xr-x 6 rtenhave staff 204B Aug 20 13:04 ..
-rw-r--r-- 1 rtenhave staff 3.8K Aug 20 13:04 DigiCertCA.crt
-rw-r--r-- 1 rtenhave staff 2.4K Aug 20 13:04 star_domain.tld.crt
-rwxr-xr-x 1 rtenhave staff 1.6K Aug 20 13:04 star_domain.tld.key

As you can see we have three files. Let’s create one file that can be used on Windows by the Tomcat Java server that’s being used by the vSphere Web Client. We need to create a so-called PCKS#12 certificate bundle that will include the private key, the certificate and the chain-file. We use OpenSSL to achieve this.

openssl pkcs12 -export -out star_domain.tld.pfx -inkey star_domain.tld.key -in star_domain.tld.crt -certfile DigiCertCA.crt

The application will ask for a passphrase. The default passphrase in use by Tomcat is testpassword. You can find that one on your vCenter server in the file tomcat-server.xml located in the folder C:\Program Files\VMware\Infrastructure\vSphereWebClient\DMServer\config. You can change it or leaf it. That’s up to you. Since the Tomcat configuration file is readable by all users and the password is stored in plain-tekst changing it does not really make sense. I’ll skip the security part and why they (VMware) should use the keyring for that. Maybe another time…

Now transfer the files to your vCenter server and place them in the folder C:\Program Files\VMware\Infrastructure\vSphereWebClient\DMServer\config\ssl. I’d suggest to take a back-up of the old certificated first.

New restart the services and your new certificate is available.

 

 

vSphere 5: The eagle has landed

1

VMware today released the new version of ESX: vSphere 5. As a VMware minded person I immediately started to download the packages. First things first: Read the manual Upgrade vCenter Server to the new version. This process was quite straight forward. First you update the vCenter server itself, then the vCenter Client, then the Update Manager and finally you install the new Web services.

After installing all vCenter Services it’s time to rock. I noticed a few things: The new vCenter Web services only supports Windows and Linux. The basic stuff works, but I was not able to connect to a console from my iMac running OSX Lion 10.7. That’s really a shame VMware, since you do support Firefox on Linux. The main problem here is that there is no native desktop version available to manage vSphere from your Mac so I really hoped the new Web Services where able to fill this gap. Unfortunately it didn’t, which was quite disappointing.

The second problem I faced was updating my two nodes running ESXi 4.1 to ESXi 5 using the Update Manager. The ESX-nodes where running a Dell ESXi-image so the Update Manager was not able to perform an upgrade using the ESXi5 image from VMware itself due to driver incompatibility. Not a real issue for me. Just burn the ISO to a disk and walk up the stairs to my lab, inserting CD’s and perform the upgrade manually. Although my Dell PowerEdge 840 desktops where not listed on VMware’s hardware list, ESXi 5 runs smooth on these servers.

LAB environment:
Like said, my home lab contains one cluster build on two Dell PowerEdge 840 desktop servers. Both servers have a PERC 5i RAID-controller with 2x 146 Gbyte SAS and 2x 160 Gbyte SATA disks. Both servers have 8 Gbyte of RAM, which is the maximum the server supports. A dual core Intel Xeon 3040 is used as a processor. The only issue I have is that the servers only have 1 Network Card on-board. Though it’s a Gbit port, more NIC’s would be nice to use more features typically done in a lab environment. I have some PCI-e NIC’s available, so when I’m in a good mood I’ll install ESXi on an USB-stick and replace the RAID-controller with the new network cards.

Network storage is provided by an Synology DiskStation DS211 which has 2 iSCSI targets, 512 Gbyte each. Since the unit is running a 2 TByte raid-array build on SATA-disks, this is not really a fast solution but it still performs running 12 Virtual Machines, more than enough for lab purposes.

VSP5 binnen. Nu vSphere 5 nog

0

[X] VSP5
[  ] VSTP5
[  ] VCP5

Go to Top