Installing vRealize Automation 15 March 2018 vRealize Automation 7.
Installing vRealize Automation You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have comments about this documentation, submit your feedback to docfeedback@vmware.com VMware, Inc. 3401 Hillview Ave. Palo Alto, CA 94304 www.vmware.com Copyright © 2012–2018 VMware, Inc. All rights reserved. Copyright and trademark information. VMware, Inc.
Contents vRealize Automation Installation Updated Information 7 8 1 vRealize Automation Installation Overview 10 About vRealize Automation Installation 10 New in this vRealize Automation Installation 11 vRealize Automation Installation Components The vRealize Automation Appliance Infrastructure as a Service Deployment Type 11 11 12 14 Minimal vRealize Automation Deployments 14 Distributed vRealize Automation Deployments Choosing Your Installation Method 15 18 2 Preparing for vRealize Automa
Installing vRealize Automation 4 Installing vRealize Automation with the Installation Wizard 39 Using the Installation Wizard for Minimal Deployments 39 Start the Installation Wizard for a Minimal Deployment Install the vRealize Automation Management Agent Completing the Installation Wizard 39 40 42 Using the Installation Wizard for Enterprise Deployments 42 Start the Installation Wizard for an Enterprise Deployment Install the vRealize Automation Management Agent Completing the Installation Wizard
Installing vRealize Automation The vRealize Automation Installation Command Line 126 vRealize Automation Installation Command Line Basics vRealize Automation Installation Command Names The vRealize Automation Installation API 126 127 128 Convert Between vRealize Automation Silent Properties and JSON 129 7 vRealize Automation Post-Installation Tasks 131 Configure Federal Information Processing Standard Compliant Encryption Enable Automatic Manager Service Failover 131 132 About Automatic Manager
Installing vRealize Automation Troubleshooting the vRealize Automation Appliance Installers Fail to Download 155 155 Encryption.
vRealize Automation Installation This vRealize Automation Installation guide contains wizard, manual, and silent installation instructions for VMware vRealize ™ Automation. Note Not all features and capabilities of vRealize Automation are available in all editions. For a comparison of feature sets in each edition, see https://www.vmware.com/products/vrealize-automation/.
Updated Information The following table lists the changes to Installing vRealize Automation for this product release. Revision Description 15 MAR 2018 n 18 JAN 2018 4 DEC 2017 12 SEP 2017 30 AUG 2017 VMware, Inc. Noted JRE versus JDK in IaaS Web Server and IaaS SQL Server Host. n Updated DEM Workers with SCVMM. n Added custom URL pointer in Certificates.
Installing vRealize Automation Revision Description 7 AUG 2017 Revised .Net and disk statements in IaaS Windows Servers. Added Cannot Promote a Secondary Virtual Appliance to Master. EN-002480-02 Corrected naming guidelines in Host Names and IP Addresses. Clarified scale up, in Help and Minimal vRealize Automation Deployments. EN-002480-01 Added Change the vRealize Automation Appliance IP Address and Change an IaaS Server IP Address. EN-002480-00 Initial document release. VMware, Inc.
vRealize Automation Installation Overview 1 You can install vRealize Automation to support minimal, proof of concept environments, or in different sizes of distributed, enterprise configurations that are capable of handling production workloads. Installation can be interactive or silent. After installation, you start using vRealize Automation by customizing your setup and configuring tenants, which provides users with access to self-service provisioning and life-cycle management of cloud services.
Installing vRealize Automation New in this vRealize Automation Installation If you installed earlier versions of vRealize Automation, be aware of changes in the installation for this release before you begin. n In this release, when a problem occurs with the Manager Service, the service can transparently fail over to a backup Manager Service host if one is available. You no longer need to log in to the backup host and start the service. See About Automatic Manager Service Failover.
Installing vRealize Automation The embedded instance of vRealize Orchestrator is now recommended. In older deployments or special cases, however, users might connect vRealize Automation to an external vRealize Orchestrator instead. n The appliance contains the downloadable Management Agent installer. All Windows servers that make up your vRealize Automation IaaS must install the Management Agent.
Installing vRealize Automation SQL Server Database IaaS uses a Microsoft SQL Server database to maintain information about the machines it manages, plus its own elements and policies. Most users allow vRealize Automation to create the database during installation. Alternatively, you may create the database separately if site policies require it.
Installing vRealize Automation A virtualization proxy agent has the following characteristics. n Typically requires administrator privileges on the virtualization platform that it manages. n Communicates with the IaaS Manager Service. n Is installed separately and has its own configuration file. Most vRealize Automation deployments install the vSphere proxy agent. You might install other proxy agents depending on the virtualization resources in use at your site.
Installing vRealize Automation Figure 1‑1. Minimal vRealize Automation Deployment Users vRealize Automation Appliance vRealize Orchestrator Appliance Postgres DB IIS vRealize Automation Infrastructure as a Service (IaaS) IaaS SQL Server Database • Web Server • Model Manager Host • Manager Service Host • Distributed Execution Manager (DEM) • Agent Virtualization Resources You cannot convert a minimal deployment to an enterprise deployment.
Installing vRealize Automation Figure 1‑2. Distributed vRealize Automation Deployment Users vRealize Automation Appliance vRealize Orchestrator Appliance Postgres DB vRealize Automation Infrastructure as a Service (IaaS) IIS IaaS Web Server and Model Manager Host IaaS SQL Server Database IaaS Manager Service Host IaaS DEM(s) IaaS Agent(s) Virtualization Resources Many production deployments go even further, with redundant appliances, redundant servers, and load balancing for even more capacity.
Installing vRealize Automation Figure 1‑3.
Installing vRealize Automation Choosing Your Installation Method The consolidated vRealize Automation Installation Wizard is your primary tool for new vRealize Automation installations. Alternatively, you might want to perform the manual, separate installation processes or a silent installation. n The Installation Wizard provides a simple and fast way to install, from minimal deployments to distributed enterprise deployments with or without load balancers. Most users run the Installation Wizard.
Preparing for vRealize Automation Installation 2 You install vRealize Automation into existing virtualization infrastructure. Before you begin an installation, you need to address certain environmental and system requirements.
Installing vRealize Automation Third Party Software All third-party software should have the latest vendor patches. Third party software includes Microsoft Windows and SQL Server. Time Synchronization All vRealize Automation appliances and IaaS Windows servers must synchronize to the same time source. You may use only one of the following sources. Do not mix time sources.
Installing vRealize Automation IIS Application Pool Identity The account you use as the IIS application pool identity for the Model Manager Web service must have Log on as batch job permission. IaaS Database Credentials You can let the vRealize Automation installer create the database, or you can create it separately using SQL Server. When the vRealize Automation installer creates the database, the following requirements apply.
Installing vRealize Automation The vRealize Automation administrator password cannot contain a trailing equals ( = ) character. The password is accepted when you create it but results in errors later, when you perform operations such as saving endpoints. Host Names and IP Addresses vRealize Automation requires that you name the hosts in your installation according to certain requirements.
Installing vRealize Automation n IaaS Model Manager host n IaaS Manager Service host n IaaS SQL Server database n IaaS DEM Orchestrator The following component might work at a higher latency site, but the practice is not recommended. IaaS DEM Worker n You may install the following component at the site of the endpoint with which it communicates. IaaS Proxy Agent n vRealize Automation Appliance Most vRealize Automation appliance requirements are preconfigured in the OVF or OVA that you deploy.
Installing vRealize Automation Table 2‑2. Incoming Ports (Continued) Port Protocol Comments Access for machines to download the guest agent and software bootstrap agent. Access for load balancer, browser. 4369, 5671, 5672, 25672 TCP RabbitMQ messaging. 5480 TCP Access to the virtual appliance management interface. Used by the Management Agent. 5488, 5489 TCP Internally used by the vRealize Automation appliance for updates. 8230, 8280, 8281, 8283 TCP Internal vRealize Orchestrator instance.
Installing vRealize Automation Table 2‑3. Outgoing Ports (Continued) Port Protocol Comments 5500 TCP RSA SecurID system. Default port shown, but is configurable. 8281 TCP Optional. For communicating with an external vRealize Orchestrator instance. 9300–9400 TCP Access for Identity Manager audits. 54328 UDP Other ports might be required by specific vRealize Orchestrator plug-ins that communicate with external systems. See the documentation for the vRealize Orchestrator plug-in.
Installing vRealize Automation n Enable the Distributed Transaction Coordinator (DTC) service. IaaS uses DTC for database transactions and actions such as workflow creation. Note If you clone a machine to make an IaaS Windows server, install DTC on the clone after cloning. If you clone a machine that already has DTC, its unique identifier is copied to the clone, which causes communication to fail. See Error in Manager Service Communication.
Installing vRealize Automation Table 2‑5.
Installing vRealize Automation You need IIS 7.5 for Windows 2008 variants, IIS 8 for Windows 2012, and IIS 8.5 for Windows 2012 R2. In addition to the configuration settings, avoid hosting additional Web sites in IIS. vRealize Automation sets the binding on its communication port to all unassigned IP addresses, making no additional bindings possible. The default vRealize Automation communication port is 443. Table 2‑6.
Installing vRealize Automation n Configure Internet Information Services (IIS) according to the following table. You need IIS 7.5 for Windows 2008 variants, IIS 8 for Windows 2012, and IIS 8.5 for Windows 2012 R2. In addition to the configuration settings, avoid hosting additional Web sites in IIS. vRealize Automation sets the binding on its communication port to all unassigned IP addresses, making no additional bindings possible. The default vRealize Automation communication port is 443. Table 2‑7.
Installing vRealize Automation Your SQL Server can reside on one of your IaaS Windows servers, or on a separate host. When hosted together with IaaS components, these requirements are in addition to those for all IaaS Windows servers. n This release of vRealize Automation does not support the default SQL Server 2016 130 compatibility mode. If you separately create an empty SQL Server 2016 database for use with IaaS, use 100 or 120 compatibility mode.
Installing vRealize Automation n If the DEM Worker is behind a firewall, HTTPS traffic must be allowed to and from aws.amazon.com as well as the URLs for EC2 regions that your AWS accounts have access to, such as ec2.useast-1.amazonaws.com for the US East region. Each URL resolves to a range of IP addresses, so you might need to use a tool, such as the one available from the Network Solutions Web site, to list and configure these IP addresses.
Installing vRealize Automation n The credentials used to manage the endpoint representing an RHEV environment must have administrator privileges on the RHEV environment. When you use RHEV for provisioning, the DEM Worker communicates with and collects data from that account. n The credentials must also have enough privileges to create objects on the hosts within the environment.
Installing vRealize Automation n The credentials used to manage the endpoint representing an SCVMM instance must have administrator privileges on the SCVMM server. The credentials must also have administrator privileges on the Hyper-V servers within the instance. n To provision machines on an SCVMM resource, the vRealize Automation user who is requesting the catalog item must have the administrator role within the SCVMM instance.
Installing vRealize Automation Table 2‑9. Certificate Implementations Component Minimal Deployment (nonproduction) Distributed Deployment (production-ready) vRealize Automation Appliance Generate a self-signed certificate during appliance configuration. For each appliance cluster, you can use a certificate from an internal or external certificate authority. Multi-use and wildcard certificates are supported.
Deploying the vRealize Automation Appliance 3 The vRealize Automation appliance is delivered as an open virtualization file that you deploy on existing virtualized infrastructure.
Installing vRealize Automation Procedure 1 Select the vSphere Deploy OVF Template option. 2 Enter the path to the vRealize Automation appliance .ovf or .ova file. 3 Review the template details. 4 Read and accept the end user license agreement. 5 Enter an appliance name and inventory location. When you deploy appliances, use a different name for each one, and do not include nonalphanumeric characters such as underscores (_) in names.
Installing vRealize Automation c For Hostname, enter the appliance FQDN. For best results, enter the FQDN even if using DHCP. Note vRealize Automation supports DHCP, but static IP addresses are recommended for production deployments. d In Network Properties, when using static IP addresses, enter the values for gateway, netmask, and DNS servers. You must also enter the IP address, FQDN, and domain for the appliance itself, as shown in the following example. Figure 3‑1.
Installing vRealize Automation c n n Wait for the machine to start, which might take up to 5 minutes. If you deployed to vSphere, and Power on after deployment is not available on the Ready to Complete page, take the following steps. a After the file finishes deploying into vCenter Server, click Close. b Power on the vRealize Automation appliance. c Wait for the machine to start, which might take up to 5 minutes. d Verify that the vRealize Automation appliance is deployed by pinging its FQDN.
Installing vRealize Automation with the Installation Wizard 4 The vRealize Automation Installation Wizard provides a simple and fast way to install minimal or enterprise deployments. Before you launch the wizard, you deploy a vRealize Automation appliance and configure IaaS Windows servers to meet prerequisites. The Installation Wizard appears the first time you log in to the newly deployed vRealize Automation appliance. n To stop the wizard and return later, click Logout.
Installing vRealize Automation Procedure 1 Log in as root to the vRealize Automation appliance administration interface. https://vrealize-automation-appliance-FQDN:5480 2 When the Installation Wizard appears, click Next. 3 Accept the license agreement and click Next. 4 On the Deployment Type page, select Minimal deployment and Install Infrastructure as a Service, and click Next.
Installing vRealize Automation 5 Open a Web browser to the vRealize Automation appliance installer URL. https://vrealize-automation-appliance-FQDN:5480/installer 6 Click Management Agent installer, and save and run the .msi file. 7 Read the welcome. 8 Accept the end user license agreement. 9 Accept or change the installation folder. Program Files (x86)\VMware\vCAC\Management Agent 10 Enter vRealize Automation appliance details: a Enter the appliance HTTPS address, including FQDN and :5480 port n
Installing vRealize Automation Completing the Installation Wizard After installing the Management Agent, return to the wizard and follow the prompts. If you need additional instructions about settings, click the Help link at the upper right of the wizard. n When you finish the wizard, the last page displays the path and name to a properties file. You can edit the file and use it to perform a silent vRealize Automation installation with the same or similar settings from your wizard session.
Installing vRealize Automation 3 Accept the End User License Agreement and click Next. 4 On the Deployment Type page, select Enterprise deployment and Install Infrastructure as a Service. 5 On the Installation Prerequisites page, you pause to log in to your IaaS Windows servers and install the Management Agent. The Management Agent allows the vRealize Automation appliance to discover and connect to those IaaS servers. What to do next Install the Management Agent on your IaaS Windows servers.
Installing vRealize Automation 8 Accept the end user license agreement. 9 Accept or change the installation folder. Program Files (x86)\VMware\vCAC\Management Agent 10 Enter vRealize Automation appliance details: a Enter the appliance HTTPS address, including FQDN and :5480 port number. b Enter the appliance root account credentials. c Click Load, and confirm that the fingerprint matches the one you copied earlier. Ignore colons.
Installing vRealize Automation n When you finish the wizard, the last page displays the path and name to a properties file. You can edit the file and use it to perform a silent vRealize Automation installation with the same or similar settings from your wizard session. See Chapter 6 Silent vRealize Automation Installation. n If you created initial content, you can log in to the default tenant as the configurationadmin user and request the catalog items.
The Standard vRealize Automation Installation Interfaces 5 After running the Installation Wizard, you might need or want to perform certain installation tasks manually, through the standard interfaces. The Installation Wizard described in Chapter 4 Installing vRealize Automation with the Installation Wizard is your primary tool for new vRealize Automation installations. However, after you run the wizard, some operations still require the older, manual installation process.
Installing vRealize Automation Minimal Deployment Checklist You install vRealize Automation in a minimal configuration for proof of concept or development work. Minimal deployments require fewer steps to install but lack the production capacity of an enterprise deployment. Complete the high-level tasks in the following order. Table 5‑1. Minimal Deployment Checklist Task Details Plan the environment and address installation prerequisites.
Installing vRealize Automation 3 Select Admin > Time Settings, and set the time synchronization source. Option Description Host Time Synchronize to the vRealize Automation appliance ESXi host. Time Server Synchronize to one external Network Time Protocol (NTP) server. Enter the FQDN or IP address of the NTP server. You must synchronize vRealize Automation appliances and IaaS Windows servers to the same time source. Do not mix time sources within a vRealize Automation deployment.
Installing vRealize Automation If you want to generate a CSR request for a new certificate that you can submit to a certificate authority, select Generate Signing Request. A CSR helps your CA create a certificate with the correct values for you to import.
Installing vRealize Automation 8 Click Messaging. The configuration settings and status of messaging for your appliance is displayed. Do not change these settings. 9 Click the Telemetry tab to choose whether to join the VMware Customer Experience Improvement Program (CEIP). Details regarding the data collected through CEIP and the purposes for which it is used by VMware are set forth at the Trust & Assurance Center at http://www.vmware.com/trustvmware/ceip.html.
Installing vRealize Automation You have finished the deployment and configuration of your vRealize Automation appliance. If the appliance does not function correctly after configuration, redeploy and reconfigure the appliance. Do not make changes to the existing appliance. What to do next See Install the Infrastructure Components. Installing IaaS Components The administrator installs a complete set of infrastructure (IaaS) components on a Windows machine (physical or virtual).
Installing vRealize Automation Install the Infrastructure Components The system administrator logs into the Windows machine and uses the installation wizard to install the IaaS services on the Windows virtual or physical machine. Prerequisites n Verify that the server meets the requirements in IaaS Windows Servers. n Enable Time Synchronization on the Windows Server.
Installing vRealize Automation Prerequisites n Review the IaaS Windows server requirements. See IaaS Windows Servers. n If you are using Internet Explorer for the download, verify that Enhanced Security Configuration is not enabled. Navigate to res://iesetup.dll/SoftAdmin.htm on the Windows server. Procedure 1 Log in to the IaaS Windows server using an account that has administrator rights. 2 Open a Web browser directly to the vRealize Automation appliance installer URL.
Installing vRealize Automation 7 Select Complete Install on the Installation Type page if you are creating a minimal deployment and click Next. Check Prerequisites The Prerequisite Checker verifies that your machine meets IaaS installation requirements. Prerequisites Select the Installation Type. Procedure 1 2 Complete the Prerequisite Check. Option Description No errors Click Next. Noncritical errors Click Bypass. Critical errors Bypassing critical errors causes the installation to fail.
Installing vRealize Automation 4 Accept the default in the Database name text box, or enter the appropriate name if applicable. 5 Select the authentication method. u Select Use Windows authentication if you want to create the database using the Windows credentials of the current user. The user must have SQL sys_admin privileges. u Deselect Use Windows authentication if you want to create the database using SQL authentication.
Installing vRealize Automation Procedure 1 Accept the default Server value, which is populated with the fully qualified domain name of the vRealize Automation appliance server from which you downloaded the installer. Verify that a fully qualified domain name is used to identify the server and not an IP address. If you have multiple virtual appliances and are using a load balancer, enter the load balancer virtual appliance path. 2 Click Load to populate the value of SSO Default Tenant (vsphere.local).
Installing vRealize Automation What to do next Verify IaaS Services. Using the Standard Interfaces for Distributed Deployments Enterprise deployments are designed for greater vRealize Automation capacity in production and require that you distribute components across multiple machines. Enterprise deployments also might include redundant systems behind load balancers.
Installing vRealize Automation vRealize Orchestrator The vRealize Automation appliance includes an embedded version of vRealize Orchestrator that is now recommended for use with new installations. In older deployments or special cases, however, users might connect vRealize Automation to a separate, external vRealize Orchestrator. See https://www.vmware.com/products/vrealize-orchestrator.html.
Installing vRealize Automation In a distributed, or clustered, deployment, vRealize Automation certificate organization largely conforms to the three tiered architectural structure of vRealize Automation. The three tiers are vRealize Automation appliance, IaaS Website components, and Manager Service components. In a distributed system, each hardware machine in a particular tier shares a certificate.
Installing vRealize Automation Configure Web Component, Manager Service and DEM Host Certificate Trust Customers who use a thumb print with pre installed PFX files to support user authentication must configure thumb print trust on the web host, manager service, and DEM Orchestrator and Worker host machines. Customers who import PEM files or use self-signed certificates can ignore this procedure. Prerequisites Valid web.pfx and ms.pfx available for thumb print authentication. Procedure 1 Import the web.
Installing vRealize Automation Table 5‑4. vRealize Automation Appliance Variable My Value Example Primary vRealize Automation appliance FQDN automation.mycompany.com Primary vRealize Automation appliance IP address 123.234.1.105 For reference only; do not enter IP addresses Additional vRealize Automation appliance FQDN automation2.mycompany.com Additional vRealize Automation appliance IP address 123.234.1.
Installing vRealize Automation Table 5‑5. IaaS Windows Servers (Continued) Variable My Value IaaS Web Server load balancer IP address Example 123.234.1.202 For reference only; do not enter IP addresses Active IaaS Manager Service host FQDN mgr-svc.mycompany.com Active IaaS Manager Service host IP address 123.234.1.109 For reference only; do not enter IP addresses Passive IaaS Manager Service host FQDN mgr-svc2.mycompany.com Passive IaaS Manager Service host IP address 123.234.1.
Installing vRealize Automation Table 5‑7. IaaS Distributed Execution Managers (Continued) Variable My Value DEM host IP address Example 123.234.1.
Installing vRealize Automation Configuring Appliances for vRealize Automation After deploying your appliances and configuring load balancing, you configure the appliances for vRealize Automation. Configure the First vRealize Automation Appliance in a Cluster The vRealize Automation appliance is a partially configured virtual machine that hosts the vRealize Automation server and user web portal.
Installing vRealize Automation 4 Select vRA Settings > Host Settings. Option Action Resolve Automatically Select Resolve Automatically to specify the name of the current host for the vRealize Automation appliance. Update Host For new hosts, select Update Host. Enter the fully qualified domain name of the vRealize Automation appliance, vra-hostname.domain.name, in the Host Name text box. For distributed deployments that use load balancers, select Update Host.
Installing vRealize Automation Option Generate Signing Request Import Action a Select Generate Signing Request. b Review the entries in the Organization, Organization Unit, Country Code, and Common Name text boxes. These entries are populated from the existing certificate. You can edit these entries if needed.
Installing vRealize Automation 9 Click Services. All services must be running before you can install a license or log in to the console. They usually start in about 10 minutes. Note You can also log in to the appliance and run tail -f /var/log/vcac/catalina.out to monitor service startup. 10 Enter your license information. a Click vRA Settings > Licensing. b Click Licensing.
Installing vRealize Automation 15 Confirm that you can log in to vRealize Automation. a Open a Web browser to the vRealize Automation product interface URL. https://vrealize-automation-appliance-FQDN/vcac b If prompted, continue past the certificate warnings. c Log in with administrator@vsphere.local and the password you specified when you configured SSO. The interface opens to the Tenants page on the Administration tab. A single tenant named vsphere.local appears in the list.
Installing vRealize Automation Procedure 1 Log in to the new vRealize Automation appliance management interface as root. https://vrealize-automation-appliance-FQDN:5480 Continue past any certificate warnings. 2 If the installation wizard appears, cancel it so that you can go to the management interface instead of the wizard. 3 Select Admin > Time Settings, and set the time source to the same one that the rest of the cluster appliances use. 4 Select vRA Settings > Cluster.
Installing vRealize Automation Procedure 1 In the load balancer management interface or configuration file, temporarily disable all nodes except the node that you are testing. 2 Confirm that you can log in to vRealize Automation through the load balancer address: https://vrealize-automation-appliance-load-balancer-FQDN/vcac 3 After verifying that you can access the new vRealize Automation appliance through the load balancer, re-enable the other nodes.
Installing vRealize Automation 4 Install an IaaS Website Component and Model Manager Data The system administrator installs the Website component to provide access to infrastructure capabilities in the vRealize Automation web console. You can install one or many instances of the Website component, but you must configure Model Manager Data on the machine that hosts the first Website component. You install Model Manager Data only once.
Installing vRealize Automation Procedure 1 Obtain a certificate from a trusted certificate authority. 2 Open the Internet Information Services (IIS) Manager. 3 Double-click Server Certificates from Features View. 4 Click Import in the Actions pane. a Enter a file name in the Certificate file text box, or click the browse button (…), to navigate to the name of a file where the exported certificate is stored.
Installing vRealize Automation Procedure 1 (Optional) Activate HTTP if you are installing on a Windows 2012 machine. a Select Features > Add Features from Server Manager. b Expand WCF Services under .NET Framework Features. c Select HTTP Activation. 2 Log in to the IaaS Windows server using an account that has administrator rights. 3 Open a Web browser directly to the vRealize Automation appliance installer URL. Do not use a load balancer address.
Installing vRealize Automation Table 5‑8. Choosing an IaaS Database Scenario Scenario Procedure Create the IaaS database manually using the provided database scripts. This option enables a database administrator to review the changes carefully before creating the database. Create the IaaS Database Manually. Prepare an empty database and use the installer to populate the database schema. This option enables the installer to use a database user with dbo privileges to populate the database.
Installing vRealize Automation Table 5‑9. Database Values Variable Value db_server Specifies the SQL Server instance in the format dbhostname[,port number]\SQL instance. Specify a port number only if you are using a non-default port. The Microsoft SQL default port number is 1433. The default value for db_server is localhost. db_name Name of the database. The default value is vra. Database names must consist of no more than 128 ASCII characters.
Installing vRealize Automation 4 Edit the following files, and replace all instances of the variables in the table with the correct values for your environment. CreateDatabase.sql SetDatabaseSettings.sql Table 5‑10. Database Values 5 Variable Value $(DBName) Name of the database, such as vra. Database names must consist of no more than 128 ASCII characters. $(DBDir) Path to the data directory for the database, excluding the final slash.
Installing vRealize Automation Prerequisites n If you are creating the database with Windows authentication, instead of SQL authentication, verify that the user who runs the installer has sysadmin rights on the SQL server. n Download the vRealize Automation IaaS Installer. Procedure 1 Right-click the setup__vrealize-automation-appliance-FQDN@5480.exe setup file and select Run as administrator. 2 Click Next. 3 Accept the license agreement and click Next.
Installing vRealize Automation 12 (Optional) Select the Use SSL for database connection checkbox. By default, the checkbox is enabled. SSL provides a more secure connection between the IaaS server and SQL database. However, you must first configure SSL on the SQL server to support this option. For more about configuring SSL on the SQL server, see Microsoft Technet article 189067. 13 Choose your database installation type from the Database Name panel.
Installing vRealize Automation Install an IaaS Website Component and Model Manager Data The system administrator installs the Website component to provide access to infrastructure capabilities in the vRealize Automation web console. You can install one or many instances of the Website component, but you must configure Model Manager Data on the machine that hosts the first Website component. You install Model Manager Data only once.
Installing vRealize Automation 2 Right-click the setup__vrealize-automation-appliance-FQDN@5480.exe setup file and select Run as administrator. 3 Click Next. 4 Accept the license agreement and click Next. 5 On the Log in page, supply administrator credentials for the vRealize Automation appliance and verify the SSL Certificate. a Type the user name, which is root, and the password. The password is the password that you specified when you deployed the vRealize Automation appliance.
Installing vRealize Automation 15 Select the certificate for this component. a If you imported a certificate after you began the installation, click Refresh to update the list. b Select the certificate to use from Available certificates. c If you imported a certificate that does not have a friendly name and it does not appear in the list, deselect Display certificates using friendly names and click Refresh.
Installing vRealize Automation 8 (Optional) Click Test to verify the credentials. 9 In the IaaS Server text box, identify the IaaS Web server component. Option Description With a load balancer Enter the fully qualified domain name and port number of the load balancer for the IaaS Web server component, web-load-balancer.mycompany.com:443. Do not enter IP addresses.
Installing vRealize Automation 18 When the installation finishes, deselect Guide me through the initial configuration and click Next. What to do next You can install additional Web server components or install the Manager Service. See Install Additional IaaS Web Server Components or Install the Active Manager Service. Install Additional IaaS Web Server Components The Web server provides access to infrastructure capabilities in vRealize Automation.
Installing vRealize Automation 6 Click Next. 7 Select Custom Install on the Installation Type page. 8 Select IaaS Server under Component Selection on the Installation Type page. 9 Accept the root install location or click Change and select an installation path. Even in a distributed deployment, you might sometimes install more than one IaaS component on the same Windows server. If you install more than one IaaS component, always install them to the same path. 10 Click Next.
Installing vRealize Automation 18 In the IaaS Server text box, identify the first IaaS Web server component. Option Description With a load balancer Enter the fully qualified domain name and port number of the load balancer for the IaaS Web server component, web-load-balancer.mycompany.com:443. Do not enter IP addresses. Without a load balancer Enter the fully qualified domain name and port number of the machine where you installed the IaaS first Web server component, web.mycompany.com:443.
Installing vRealize Automation What to do next Install the Active Manager Service. Install the Active Manager Service The active Manager Service is a Windows service that coordinates communication between IaaS Distributed Execution Managers, the database, agents, proxy agents, and SMTP. Unless you enable automatic Manager Service failover, your IaaS deployment requires that only one Windows machine actively run the Manager Service at a time.
Installing vRealize Automation 4 On the Log in page, supply administrator credentials for the vRealize Automation appliance and verify the SSL Certificate. a Type the user name, which is root, and the password. The password is the password that you specified when you deployed the vRealize Automation appliance. b Select Accept Certificate. c Click View Certificate. Compare the certificate thumbprint with the thumbprint set for the vRealize Automation appliance.
Installing vRealize Automation 16 Select the certificate for this component. a If you imported a certificate after you began the installation, click Refresh to update the list. b Select the certificate to use from Available certificates. c If you imported a certificate that does not have a friendly name and it does not appear in the list, deselect Display certificates using friendly names and click Refresh.
Installing vRealize Automation n You can install another instance of the Manager Service component as a passive backup that you can start manually if the active instance fails. See Install a Backup Manager Service Component. n A system administrator can change the authentication method used to access the SQL database during run time (after the installation is complete). See Configuring Windows Service to Access the IaaS Database.
Installing vRealize Automation 5 On the Log in page, supply administrator credentials for the vRealize Automation appliance and verify the SSL Certificate. a Type the user name, which is root, and the password. The password is the password that you specified when you deployed the vRealize Automation appliance. b Select Accept Certificate. c Click View Certificate. Compare the certificate thumbprint with the thumbprint set for the vRealize Automation appliance.
Installing vRealize Automation 17 Select the certificate for this component. a If you imported a certificate after you began the installation, click Refresh to update the list. b Select the certificate to use from Available certificates. c If you imported a certificate that does not have a friendly name and it does not appear in the list, deselect Display certificates using friendly names and click Refresh.
Installing vRealize Automation n A system administrator can change the authentication method used to access the SQL database during run time (after the installation is complete). See Configuring Windows Service to Access the IaaS Database. Installing Distributed Execution Managers You install the Distributed Execution Manager as one of two roles: DEM Orchestrator or DEM Worker.
Installing vRealize Automation 4 On the Log in page, supply administrator credentials for the vRealize Automation appliance and verify the SSL Certificate. a Type the user name, which is root, and the password. The password is the password that you specified when you deployed the vRealize Automation appliance. b Select Accept Certificate. c Click View Certificate. Compare the certificate thumbprint with the thumbprint set for the vRealize Automation appliance.
Installing vRealize Automation 15 (Optional) Enter a description of this instance in DEM description. 16 Enter the host names and ports in the Manager Service Host name and Model Manager Web Service Host name text boxes. Option Description With a load balancer Enter the fully qualified domain name and port number of the load balancers for the Manager Service component and the Web server that hosts Model Manager, mgr-svc-load-balancer.mycompany.com:443 and web-loadbalancer.mycompany.com:443.
Installing vRealize Automation Procedure 1 Stop the DEM Worker service. 2 Open the following file in a text editor. Program Files (x86)\VMware\vCAC\Distributed Execution Manager\instancename\DynamicOps.DEM.exe.config 3 Locate the section. 4 Update each path, using the following example as a guideline. PAGE 96Installing vRealize Automation Procedure 1 Navigate to the Database subdirectory within the directory where you extracted the installation zip archive. 2 Extract the DBInstall.zip archive to a local directory. 3 Log in to the database host as a user with the sysadmin role in the SQL Server instance. 4 Edit VMPSOpsUser.sql and replace all instances of $(Service User) with user (from Step 3) under which the Manager Service will run.
Installing vRealize Automation 5 Replace Integrated Security=True; with User Id=database-username;Password=database-password; 6 Save and close the files. ManagerService.exe.config Web.config 7 Start the VMware vCloud Automation Center service. 8 Use the iisreset command to restart IIS. Verify IaaS Services After installation, the system administrator verifies that the IaaS services are running. If the services are running, the installation is a success.
Installing vRealize Automation For high-availability, you can install multiple agents for a single endpoint. Install each redundant agent on a separate server, but name and configure them identically. Redundant agents provide some fault tolerance, but do not provide failover. For example, if you install two vSphere agents, one on server A and one on server B, and server A becomes unavailable, the agent installed on server B continues to process work items.
Installing vRealize Automation Table 5‑11. Choosing an Agent Scenario Integration Scenario Agent Requirements and Procedures Provision cloud machines by integrating with a cloud environment such as Amazon Web Services or Red Hat Enterprise Linux OpenStack Platform. You do not need to install an agent. Provision virtual machines by integrating with a vSphere environment.
Installing vRealize Automation Credentials When creating an endpoint representing the vCenter Server instance to be managed by a vSphere agent, the agent can use the credentials that the service is running under to interact with the vCenter Server or specify separate endpoint credentials. The following table lists the permissions that the vSphere endpoint credentials must have to manage a vCenter Server instance.
Installing vRealize Automation Table 5‑12. Permissions Required for vSphere Agent to Manage vCenter Server Instance (Continued) Attribute Value Permission Remove Disk Advanced Change CPU Count Change Resource Extend Virtual Disk Disk Change Tracking Memory Modify Device Settings Rename Set Annotation (version 5.
Installing vRealize Automation Procedure 1 Right-click the setup__vrealize-automation-appliance-FQDN@5480.exe setup file and select Run as administrator. 2 Click Next. 3 Accept the license agreement and click Next. 4 On the Log in page, supply administrator credentials for the vRealize Automation appliance and verify the SSL Certificate. a Type the user name, which is root, and the password. The password is the password that you specified when you deployed the vRealize Automation appliance.
Installing vRealize Automation 12 Enter an identifier for this agent in the Agent name text box. Maintain a record of the agent name, credentials, endpoint name, and platform instance for each agent. You need this information to configure endpoints and to add hosts in the future. Important For high availability, you may add redundant agents and configure them identically. Otherwise, keep agents unique. Option Description Redundant agent Install redundant agents on different servers.
Installing vRealize Automation 20 Click Next. 21 Click Finish. 22 Verify that the installation is successful. 23 (Optional) Add multiple agents with different configurations and an endpoint on the same system. What to do next Configure the vSphere Agent. Configure the vSphere Agent Configure the vSphere agent in preparation for creating and using vSphere endpoints within vRealize Automation blueprints.
Installing vRealize Automation 5 (Optional) To configure the virtual machine deletion policy, use the following command. set doDeletes For example: DynamicOps.Vrm.VRMencrypt.exe VRMAgent.exe.config set doDeletes false Option Description true (Default) Delete virtual machines destroyed in vRealize Automation from vCenter Server. false Move virtual machines destroyed in vRealize Automation to the VRMDeleted directory in vCenter Server.
Installing vRealize Automation Prerequisites n Install IaaS, including the Web server and Manager Service host. n Download the vRealize Automation IaaS Installer. n Verify that Hyper-V Hypervisor proxy agents have system administrator credentials. n Verify that the credentials under which to run the agent service have administrative access to the installation host. n Verify that all XenServer or Hyper-V instances on the hosts to be managed by the agent have administrator-level credentials.
Installing vRealize Automation 7 Accept the root install location or click Change and select an installation path. Even in a distributed deployment, you might sometimes install more than one IaaS component on the same Windows server. If you install more than one IaaS component, always install them to the same path. 8 Click Next. 9 Log in with administrator privileges for the Windows services on the installation machine. The service must run on the same installation machine. 10 Click Next.
Installing vRealize Automation 15 Configure a connection to the IaaS Web server. Option Description With a load balancer Enter the fully qualified domain name and port number of the load balancer for the Web server component, web-load-balancer.mycompany.com:443. Do not enter IP addresses. Without a load balancer Enter the fully qualified domain name and port number of the machine where you installed the Web server component, web.mycompany.com:443. Do not enter IP addresses. The default port is 443.
Installing vRealize Automation 2 View the current configuration settings. Enter DynamicOps.Vrm.VRMencrypt.exe VRMAgent.exe.config get The following is an example of the output of the command: Username: XSadmin 3 Enter the set command to change a property, where property is one of the options shown in the table. Dynamic0ps.Vrm.VRMencrypt.exe VRMAgent.exe.config set property value If you omit value, the utility prompts you for a new value.
Installing vRealize Automation You can install a general VDI agent to interact with multiple servers. If you are installing one dedicated agent per server for load balancing or authorization reasons, you must provide the name of the XenDesktop DDC server when installing the agent. A dedicated agent can handle only registration requests directed to the server specified in its configuration.
Installing vRealize Automation Procedure 1 In Citrix XenCenter, select your XenPool or standalone XenServer and click the General tab. Record the UUID. 2 When you add your XenServer Pool or standalone host to XenDesktop, type the UUID that was recorded in the previous step as the Connection name. Install the XenDesktop Agent Virtual desktop integration (VDI) PowerShell agents integrate with external virtual desktop system, such as XenDesktop and Citrix.
Installing vRealize Automation 8 Accept the root install location or click Change and select an installation path. Even in a distributed deployment, you might sometimes install more than one IaaS component on the same Windows server. If you install more than one IaaS component, always install them to the same path. 9 Click Next. 10 Log in with administrator privileges for the Windows services on the installation machine. The service must run on the same installation machine. 11 Click Next.
Installing vRealize Automation 16 Click Test to verify connectivity to each host. 17 Select the VDI version. 18 Enter the fully qualified domain name of the managed server in the VDI Server text box. 19 Click Add. 20 Click Next. 21 Click Install to begin the installation. After several minutes a success message appears. 22 Click Next. 23 Click Finish. 24 Verify that the installation is successful. 25 (Optional) Add multiple agents with different configurations and an endpoint on the same system.
Installing vRealize Automation Citrix Agent Host Requirements PowerShell and Citrix Provisioning Services SDK must be installed on the installation host prior to agent installation. Consult the vRealize Automation Support Matrix on the VMware Web site for details. Verify that Microsoft PowerShell is installed on the installation host before agent installation. The version required depends on the operating system of the installation host. See Microsoft Help and Support.
Installing vRealize Automation 5 Select Custom Install on the Installation Type page. 6 Select Component Selection on the Installation Type page. 7 Accept the root install location or click Change and select an installation path. Even in a distributed deployment, you might sometimes install more than one IaaS component on the same Windows server. If you install more than one IaaS component, always install them to the same path. 8 Click Next.
Installing vRealize Automation 14 Configure a connection to the IaaS Web server. Option Description With a load balancer Enter the fully qualified domain name and port number of the load balancer for the Web server component, web-load-balancer.mycompany.com:443. Do not enter IP addresses. Without a load balancer Enter the fully qualified domain name and port number of the machine where you installed the Web server component, web.mycompany.com:443. Do not enter IP addresses. The default port is 443.
Installing vRealize Automation When executing a script, the EPI agent passes all machine custom properties as arguments to the script. To return updated property values, you must place these properties in a dictionary and call a vRealize Automation function. A sample script is included in the scripts subdirectory of the EPI agent installation directory.
Installing vRealize Automation Procedure 1 Right-click the setup__vrealize-automation-appliance-FQDN@5480.exe setup file and select Run as administrator. 2 Click Next. 3 Accept the license agreement and click Next. 4 On the Log in page, supply administrator credentials for the vRealize Automation appliance and verify the SSL Certificate. a Type the user name, which is root, and the password. The password is the password that you specified when you deployed the vRealize Automation appliance.
Installing vRealize Automation 12 Enter an identifier for this agent in the Agent name text box. Maintain a record of the agent name, credentials, endpoint name, and platform instance for each agent. You need this information to configure endpoints and to add hosts in the future. Important For high availability, you may add redundant agents and configure them identically. Otherwise, keep agents unique. Option Description Redundant agent Install redundant agents on different servers.
Installing vRealize Automation 22 Click Finish. 23 Verify that the installation is successful. 24 (Optional) Add multiple agents with different configurations and an endpoint on the same system. Installing the WMI Agent for Remote WMI Requests A system administrator enables the Windows Management Instrumentation (WMI) protocol and installs the WMI agent on all managed Windows machines to enable management of data and operations.
Installing vRealize Automation 4 On the Log in page, supply administrator credentials for the vRealize Automation appliance and verify the SSL Certificate. a Type the user name, which is root, and the password. The password is the password that you specified when you deployed the vRealize Automation appliance. b Select Accept Certificate. c Click View Certificate. Compare the certificate thumbprint with the thumbprint set for the vRealize Automation appliance.
Installing vRealize Automation 13 Configure a connection to the IaaS Manager Service host. Option Description With a load balancer Enter the fully qualified domain name and port number of the load balancer for the Manager Service component, mgr-svc-load-balancer.mycompany.com:443. Do not enter IP addresses. Without a load balancer Enter the fully qualified domain name and port number of the machine where you installed the Manager Service component, mgr-svc.mycompany.com:443. Do not enter IP addresses.
Silent vRealize Automation Installation 6 vRealize Automation includes options for scripted, silent installation from the command line, and APIbased silent installation. Both approaches require that you prepare, in advance, the values that you would normally enter by hand during a conventional installation.
Installing vRealize Automation Prerequisites n Create an unconfigured appliance. See Deploy the vRealize Automation Appliance. n Create or identify your IaaS Windows servers, and configure their prerequisites. n Install the Management Agent on your IaaS Windows servers. You may install the Management Agent using the traditional .msi file download or the silent process described in Perform a Silent vRealize Automation Management Agent Installation.
Installing vRealize Automation Procedure 1 Log in to the IaaS Windows server using an account that has administrator rights. 2 Open a Web browser to the vRealize Automation appliance installer URL. https://vrealize-automation-appliance-FQDN:5480/installer 3 Right-click the link to the InstallManagementAgent.ps1 PowerShell script file, and save it to the desktop or a folder on the IaaS Windows server. 4 Open InstallManagementAgent.ps1 in a text editor.
Installing vRealize Automation n Load balancer FQDNs n SQL Server database parameters n Proxy agent parameters to connect to virtualization resources n Whether the silent installer should attempt to correct missing IaaS Windows server prerequisites The silent installer can correct many missing Windows prerequisites. However, some configuration problems, such as not enough CPU, cannot be changed by the silent installer. To save time, you can reuse and modify an ha.
Installing vRealize Automation Run Commands Most command line functions involve running a command against a node in the vRealize Automation cluster. To run a command, use the following syntax. vra-command execute --node node-ID command-name --parameter-name parameter-value As shown in the preceding syntax, many commands require parameters and parameter values chosen by the user. Display Command Status Some commands take a few moments or even longer to complete.
Installing vRealize Automation The long list of command names and parameters is not reproduced in separate documentation. To use the list effectively, identify a command of interest, and narrow your focus by entering the following command. vra-command help command-name The vRealize Automation Installation API The vRealize Automation REST API for installation gives you the ability to create purely softwarecontrolled installations for vRealize Automation.
Installing vRealize Automation Installation can take a long time depending on the deployment size. Again, locate the command ID, and use the aggregated status GET command to obtain installation progress. The GET response might resemble the following example. "progress": "78%", "counts": {"failed": 0, "completed": 14, "total": 18, "queued": 3, "processing": 1}, "failed-commands": 0 n If something goes wrong with the installation, you can trigger log collection for all nodes using the following command.
Installing vRealize Automation You can also display help for the script. /usr/lib/vcac/tools/install/convert-properties –-help VMware, Inc.
vRealize Automation PostInstallation Tasks 7 After you install vRealize Automation, there are post-installation tasks that might need your attention.
Installing vRealize Automation 3 Near the upper right, click the button to enable or disable FIPS. When enabled, inbound and outbound vRealize Automation appliance network traffic on port 443 uses FIPS 140–2 compliant encryption. Regardless of the FIPS setting, vRealize Automation uses AES–256 compliant algorithms to protect secured data stored on the vRealize Automation appliance.
Installing vRealize Automation Starting in vRealize Automation 7.3, you no longer need to manually start or stop the Manager Service on each Windows server, to control which serves as primary or backup. Automatic Manager Service failover is enabled by default in the following cases.
Installing vRealize Automation 4 If manualFailoverNeeded is true, perform a manual failover. For information about performing a manual failover, see Managing vRealize Automation. Replacing Self-Signed Certificates with Certificates Provided by an Authority If you installed vRealize Automation with self-signed certificates, you might want to replace them with certificates provided by a certificate authority before deploying to production.
Installing vRealize Automation 8 Log in as root to a console session on the master vRealize Automation appliance, and run the following script. /usr/lib/vcac/tools/change-hostname/change-hostname.sh old-master-FQDN newmaster-FQDN 9 Log in as root to a console session on all replica vRealize Automation appliances, and run the following command. sed -i "s/old-master-FQDN/new-master-FQDN/g" "/etc/haproxy/conf.d/10-psql.cfg" "/etc/haproxy/conf.d/20-vcac.
Installing vRealize Automation 2 Wait for DNS replication and zone distribution to occur. 3 Log in as root to the replica node vRealize Automation appliance management interface. https://vrealize-automation-appliance-FQDN:5480 4 Click the Network tab. 5 Below the tabs, click Address. 6 In the Hostname text box, enter the new name in FQDN format. 7 At the upper right, click Save Settings.
Installing vRealize Automation On the same host name, you can restore the SQL database from a backup with no further steps required. If you restore to a different host name, you need to edit configuration files to make additional changes. See VMware Knowledge Base article 2074607 for the changes required when moving the SQL database to a different host name.
Installing vRealize Automation 4 Expand OVF Settings, and enable the ISO image option. Figure 7‑1. OVF Environment and ISO Image Options 5 Click OK. 6 Start the vRealize Automation appliance that you are changing. 7 Log in as root to the vRealize Automation appliance management interface. https://vrealize-automation-appliance-FQDN:5480 8 Click the Network tab. 9 Below the tabs, click Address. 10 Update the IP address. 11 At the upper right, click Save Settings.
Installing vRealize Automation 16 Start vRealize Automation services on IaaS servers. 17 Log in as root to the vRealize Automation appliance management interface. https://vrealize-automation-appliance-FQDN:5480 18 Verify vRealize Automation appliance status in the following areas.
Installing vRealize Automation The default install folder is C:\Program Files (x86)\VMware. Verify IP addresses or FQDNs of vRealize Automation appliances and IaaS Windows servers. 5 On all IaaS Windows servers, inspect the following file in a text editor. install-folder\vCAC\Management Agent\VMware.IaaS.Management.Agent.exe.Config Verify the IP address or FQDN of the vRealize Automation appliance. 6 Log in to the SQL Server host.
Installing vRealize Automation 6 On the IaaS server, change the host name, but do not restart when prompted. Look for the host name in the Windows system properties, under the computer name, domain, and workgroup settings. When prompted to restart, click the option to restart later. 7 If you used the old host name to generate certificates, update certificates. For information about updating certificates, see Managing vRealize Automation.
Installing vRealize Automation Table 7‑3. Files to Update When Changing an Agent Node Host Name 9 IaaS Server Path File Agent node install-folder\Agents\agent-name VRMAgent.exe.config Restart the IaaS server where you changed the host name. 10 Start the vRealize Automation application pools that you stopped earlier. 11 Start the vRealize Automation services, agents, and DEMs that you stopped earlier.
Installing vRealize Automation Removing a vRealize Automation Appliance from a Cluster In some cases, you might need to remove a vRealize Automation appliance in the course of maintaining your environment. vRealize Automation does not include an interface for removing an appliance node from an existing cluster. To remove a vRealize Automation appliance, follow the guidelines in VMware Knowledge Base article 2149866.
Installing vRealize Automation Change a vRealize Automation Appliance FQDN Back to the Original FQDN In some cases, a vRealize Automation appliance FQDN might change when you do not want it to. For example, the FQDN changes if you create an Integrated Windows Authentication (IWA) directory for a domain other than the domain that the appliance is on. If you create an IWA directory for another domain, take the following steps to change the appliance FQDN back to the original FQDN.
Installing vRealize Automation c 5 Save and close VMware.IaaS.Management.Agent.exe.Config. Log in as root to the vRealize Automation appliance management interface. https://vrealize-automation-appliance-FQDN:5480 6 Go to vRA settings > Messaging and click Reset RabbitMQ Cluster. 7 After the reset finishes, log in to each appliance management interface. 8 Go to vRA Settings > Cluster, and verify that all nodes are connected to the cluster.
Installing vRealize Automation c Click Add. d Repeat this step to add one or more additional users who are responsible for configuring the default tenant. 6 Click the Administrators tab. 7 Assign your local users to the tenant administrator and IaaS administrator roles. a Enter a username in the Tenant administrators search box and press Enter. b Enter a username in the IaaS administrators search box and press Enter.
Troubleshooting a vRealize Automation Installation 8 vRealize Automation troubleshooting provides procedures for resolving issues you might encounter when installing or configuring vRealize Automation.
Installing vRealize Automation Log Default Location Installation Logs C:\Program Files (x86)\vCAC\InstallLogs C:\Program Files (x86)\VMware\vCAC\Server\ConfigTool\Log WAPI Installation Logs C:\Program Files (x86)\VMware\vCAC\Web API\ConfigTool\Logfilename WapiConfiguration IaaS Logs IaaS logs are in the following locations. Log Default Location Website Logs C:\Program Files (x86)\VMware\vCAC\Server\Website\Logs Repository Log C:\Program Files (x86)\VMware\vCAC\Server\Model Manager Web\Logs
Installing vRealize Automation Roll Back a Minimal Installation A system administrator must manually remove some files and revert the database to completely uninstall a failed vRealize Automation IaaS installation. Procedure 1 If the following components are present, uninstall them with the Windows uninstaller.
Installing vRealize Automation n vRealize Automation WAPI Note If you see the following message, restart the machine and then follow this procedure: Error opening installation log file. Verify that the specified log file location exists and it is writable. Note If the Windows system has been reverted or you have uninstalled IaaS, you must run the iisreset command before you reinstall vRealize Automation IaaS. 2 Revert your database to the state it was in before the installation was started.
Installing vRealize Automation To see which log files were collected, unzip the support bundle and open the Environment.html file in a Web browser. Without connectivity, IaaS components might appear in red in the Nodes table. Another reason that the IaaS logs are missing might be that the vRealize Automation management agent service has stopped on IaaS Windows servers that appear in red.
Installing vRealize Automation b n Select Admin > Time Settings, and set the time synchronization source. Option Description Host Time Synchronize to the vRealize Automation appliance ESXi host. Time Server Synchronize to one external Network Time Protocol (NTP) server. Enter the FQDN or IP address of the NTP server. For IaaS Windows servers, see Enable Time Synchronization on the Windows Server.
Installing vRealize Automation Problem If a certificate issue occurs with vcac-config.exe when upgrading a security certificate, you might see the following message: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel You can find more information about the cause of the issue by using the following procedure. Solution 1 Open vcac-config.exe.
Installing vRealize Automation 5 Click Save Settings. What to do next Configuring to use a proxy might affect VMware Identity Manager user access. To correct the issue, see Proxy Prevents VMware Identity Manager User Log In. Console Steps for Initial Content Configuration There is an alternative to using the vRealize Automation installation interface to create the configuration administrator account and initial content.
Installing vRealize Automation 5 Execute the workflow to configure initial content: /usr/bin/python /opt/vmware/share/htdocs/service/wizard/initialcontent/workfl owexecutor.py --host $CURRENT_VA_HOSTNAME --username $SSO_ADMIN_USERNAME -password $SSO_ADMIN_PASSWORD --workflowid ef00fce2-80ef-4b48-96b5fdee36981770 --configurationAdminPassword $CONFIGURATIONADMIN_PASSWORD Cannot Downgrade vRealize Automation Licenses An error occurs when you submit the license key of a lower product edition.
Installing vRealize Automation 2 Check the other vRealize Automation appliance troubleshooting topics. 3 Download the setup file and reconnect to the vRealize Automation appliance. Encryption.key File has Incorrect Permissions A system error can result when incorrect permissions are assigned to the Encryption.key file for a virtual appliance. Problem You log in to vRealize Automation appliance and the Tenants page is displayed. After the page has begun loading, you see the message System Error.
Installing vRealize Automation Problem The horizon-workspace service cannot start due an error similar to the following: Error creating bean with name 'liquibase' defined in class path resource [spring/datastore-wireup.xml]: Invocation of init method failed; nested exception is liquibase.exception.LockException: Could not acquire change log lock.
Installing vRealize Automation 10 Close the Postgres shell. exit 11 Start the horizon-workspace service. #service horizon-workspace start Incorrect Appliance Role Assignments After Failover After a failover occurs, master and replica vRealize Automation appliance nodes might not have the correct role assignment, which affects all services that require database write access.
Installing vRealize Automation Problem The master node runs out of disk space. You log in to its management interface Database page, and promote a replica node with enough space to become the new master. Promotion appears to succeed when you refresh the management interface page, even though an error message occurred. Later, on the node that was the old master, you free up the disk space. After you promote the node back to master, however, provisioning operations fail by being stuck IN_PROGRESS.
Installing vRealize Automation 3 Click Services. 4 In the list of services, look for a service that is not in the correct state or has other problems. 5 To have vRealize Automation re-register the service, log in to a console session on the vRealize Automation appliance as root, and restart vRealize Automation by entering the following command. service vcac-server restart If there are services associated with the embedded vRealize Orchestrator instance, enter the following additional command.
Installing vRealize Automation f Register the endpoints by running the following commands: "C:\Program Files (x86)\VMware\vCAC\Server\Model Manager Data\Cafe\Vcac-Config.exe" RegisterEndpoint --EndpointAddress https://IaaS-Web-server-or-load-balancer-IP-or-FQDN /vcac -Endpoint ui -v "C:\Program Files (x86)\VMware\vCAC\Server\Model Manager Data\Cafe\Vcac-Config.exe" RegisterEndpoint --EndpointAddress https://IaaS-Web-server-or-load-balancer-IP-or-FQDN /WAPI -Endpoint wapi -v "C:\Program Files (x86)\VMware\
Installing vRealize Automation Cannot Promote a Secondary Virtual Appliance to Master In vRealize Automation, low virtual appliance memory might prevent virtual appliance promotions in the cluster. Problem The master node runs low on memory. You log in to its management interface Database page, and try to promote a secondary node to become the new master. The following error occurs.
Installing vRealize Automation 5 Restart the identity manager and elastic search services. service horizon-workspace restart service elasticsearch restart RabbitMQ Cannot Resolve Host Names RabbitMQ uses short host names for vRealize Automation appliances by default, which might prevent nodes from resolving one another. Problem You try to join another vRealize Automation appliance to the cluster, and an error similar to the following occurs.
Installing vRealize Automation 4 Set the following property to true. USE_LONGNAME=true 5 Save and close rabbitmq-env.conf. 6 Reset RabbitMQ. vcac-vami rabbitmq-cluster-config reset-rabbitmq-node 7 On just one vRealize Automation appliance node, run the following script. vcac-config cluster-config-ping-nodes --services rabbitmq-server 8 On all nodes, verify that the RabbitMQ service is started.
Installing vRealize Automation Problem You see authorization errors when using IaaS features. Cause Authorization errors can occur when IaaS does not recognize security certificates from other components. Solution 1 Open a command prompt as an administrator and navigate to the Cafe directory at vrainstallation-dir\Server\Model Manager Data\Cafe, typically C:\Program Files (x86)\VMware\vCAC\Server\Model Manager Data\Cafe. 2 Type a command of the form Vcac-Config.
Installing vRealize Automation Problem An inaccurate error message indicating that user settings have not been saved appears during IaaS installation. Cause Communication or network problems can cause this message to appear erroneously. Solution Ignore the error message and proceed with the installation. This message should not cause the setup to fail.
Installing vRealize Automation 4 Click Save. 5 Rerun the Prerequisite Checker. Failed to Install Model Manager Data and Web Components Your vRealize Automation installation can fail if the IaaS installer is unable to save the Model Manager Data component and Web component. Problem Your installation fails with the following message: The IaaS installer failed to save the Model Manager Data and Web components. Cause The failure has several potential causes.
Installing vRealize Automation n Certificate Name Mismatch This error can occur when the certificate is issued to a particular name and a different name or IP address is used. You can suppress the certificate name mismatch error during installation by selecting Suppress certificate mismatch. You can also use the Suppress certificate mismatch option to ignore remote certificate revocation list match errors. n Invalid Certificate Open Microsoft Management Console with the command mmc.exe.
Installing vRealize Automation Solution On the IaaS Windows server, disable the FIPS policy. 1 Go to Start > Control Panel > Administrative tools > Local Security Policy. 2 In the Group Policy dialog, under Local Policies, select Security Options. 3 Find and disable the following entry. System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing.
Installing vRealize Automation Cause This can occur if Windows Installer Logging is enabled, but the Windows Installer engine cannot properly write the uninstallation log file. For more information, see Microsoft Knowledge Base article 2564571. Solution 1 Restart your machine or restart explorer.exe from the Task Manager. 2 Uninstall the agent.
Installing vRealize Automation 9 Click OK. 10 Remove machines that are stuck in the Clone Workflow state. a Log in to the vRealize Automation product interface. https://vrealize-automation-appliance-FQDN/vcac/tenant-name b Navigate to Infrastructure > Managed Machines. c Right click the target machine. d Select Delete to remove the machine.
Installing vRealize Automation Solution You can use the following XSLT templates: n ArchivePeriodExpired n EpiRegister n EpiUnregister n LeaseAboutToExpire n LeaseExpired n LeaseExpiredPowerOff n ManagerLeaseAboutToExpire n ManagerLeaseExpired n ManagerReclamationExpiredLeaseModified n ManagerReclamationForcedLeaseModified n ReclamationExpiredLeaseModified n ReclamationForcedLeaseModified n VdiRegister n VdiUnregister Email templates are located in the \Templates directory unde
Installing vRealize Automation Cause The UPN entered must adhere to a yourname.admin@yourdomain format, for example if you log in using jsmith.admin@sqa.local as the user name but the UPN in the Active Directory is only set as jsmith.admin, the login fails. Solution To correct the problem change the userPrincipalName value to include the needed @yourdomain content and retry login. In this example the UPN name should be jsmith.admin@sqa.local.
Installing vRealize Automation Proxy Prevents VMware Identity Manager User Log In Configuring to use a proxy might prevent VMware Identity Manager users from logging in. Problem You configure vRealize Automation to access the network through a proxy server, and VMware Identity Manager users see the following error when they attempt to log in. Error Unable to get metadata Solution Prerequisites Configure vRealize Automation to access the network through a proxy server.
