vmware vrealize suite 2020 - onde...deploying vrealize log insight confidential ©2020 vmware, inc....
TRANSCRIPT
Confidential │ ©2019 VMware, Inc.
VMwarevRealize Suite 2020Multicloud Cloud Management
Paanob Mahanarongchai
General SE
Confidential │ ©2020 VMware, Inc. 2
Purpose-built cloud management solutions
Public CloudData CenterEdge Managed Data Center
H Y B R I D C L O U D A P I
AWS GCPAZURE
Native Public Clouds
M U L T I C L O U D M A N A G E M E N T
H Y B R I D C L O U D M A N A G E M E N T
H Y B R I D C L O U D A P I
1
2
Confidential │ ©2020 VMware, Inc. 3
Management across clouds anchored by vRealize
Self driving operations
Infra Monitoring Troubleshooting
Security & Network Visibility
Log Management
Cost & CapacityManagement
Compliance DR
Application operations
Metrics and App Monitoring
CONSISTENT OPERATIONS
CAPABILITY VIEW
CONSISTENT INFRASTRUCTURE
Compute Storage Network
VCF
Pro
acti
ve s
up
po
rt
Public CloudData CenterEdge Managed Data Center
Native Public Clouds
VMs Containers (Pacific/TKG)
Programmable provisioning
Infrastructure as Code
Service Catalog
Pipeline as Code
Marketplace
K8s Lifecycle Management K8s Policies
Global Policies
Orchestration Common platform
Confidential │ ©2020 VMware, Inc. 4
Self driving operations
Management across clouds anchored by vRealizeCONSISTENT OPERATIONS
PRODUCT VIEW
CONSISTENT INFRASTRUCTURE
Compute Storage Network
VCF
Public CloudData CenterEdge Managed Data Center
Native Public Clouds
VMs Containers (Pacific/TKG)
Application operations
Programmable provisioning
Pro
acti
ve s
up
po
rt
Skyl
ine
Wavefront
Tanzu
vRealize
3
4
Confidential │ ©2020 VMware, Inc. 5
One vRealize across On-Prem and Saas
Evolving the product further
vRealizeAutomationCLOUD
vRealizeOperationsCLOUD
vRealizeLogInsightCLOUD
vRealizeNetworkInsightCLOUD
SAAS
ON PREM
vRealize Cloud Management
vRealizeAutomation 8.1
vRealizeOperations 8.1
vRealizeLogInsight 8.1
vRealizeNetworkInsight 5.1
Confidential │ ©2020 VMware, Inc. 6
Tactics for modern hybrid cloud
CONSISTENT OPERATIONS
Public CloudData CenterEdge Managed Data Center
CONSISTENT INFRASTRUCTURE
Self driving operations
Application operations
Programmable provisioning
SKYL
INE
VMs Containers
Continuous AI-driven-optimization for efficiency
Deeply integrated with VCF, VMC
Consistent consumption and operations
Integrate with Pacific and Tanzu for container & app mgmt
5
6
Confidential │ ©2020 VMware, Inc. 7
Tactics for SaaS based multi-cloud management (attach)
CONSISTENT OPERATIONS
Public CloudData CenterEdge Managed Data Center
CONSISTENT INFRASTRUCTURE
Self driving operations
Application operations
Programmable provisioning
SKYL
INE
VMs Containers
Enterprise app observability with deep integrations for Pivotal/Tanzu
Integrate with CH to extend core capabilities to all clouds
Expand multi-cloud catalog, policies and provisioning with Terraform
Public Cloud
Data Center
Edge Managed Data
CenterNative Public
Clouds
Confidential │ ©2020 VMware, Inc. 8
vRealize covers the entire spectrum of IT operations
Vrealize Operations vRealize Log InsightvRealize Network Insight
WavefrontvRealize Automation
ProviderVI AdminCloud Admin
Cloud Admin, Project admin, Developer
ProviderCloud Admin, Tenant Admin
Project admin, Developer
1 SetupSetup the cloud infrastructure & define cloud constructs
2 DeployProvision & orchestrate infra & apps with declarative templates from a catalog
3 ManageManage performance, capacity, costs of your cloud, troubleshoot & remediate issues, automate optimization and other day-2 actions
RunContinuously deploy & observe applications via pipeline & perform automated remediation & optimization
4
7
8
Confidential │ ©2020 VMware, Inc. 9
vRealize Operations 8.1Self-Driving Operations
Self-Driving Operations
CONTINUOUS OPTIMIZATIONAI Self-driving Engine
Metrics, Events, Configurations, Logs
Application Topology and Dependency Mapping
Intelligent Remediation
Capacity & Cost Optimization
Performance Optimization
SDDC Configuration Compliance
CA
PA
BIL
ITIE
SC
AP
AB
ILIT
IES
PLA
TFO
RM
PLA
TFO
RM
VI Admin
Cloud Admin
SRE
USE
R P
ER
SON
AS
USE
R P
ER
SON
AS
INTE
NT
& P
OLI
CIE
SIN
TEN
T &
PO
LIC
IES
Continuous Optimization
Cloud assisted proactive support with actions
VMwareSkyline
Business Intent Operational Intent
Cost
Compliance
Service Level
Performance
Utilization
Capacity
OU
TCO
MES
OU
TCO
MES
PUBLIC CLOUDSDDC (VCF) EDGE VMCVCPP
Discover, Collect and Persist
Confidential │ ©2020 VMware, Inc. 10
vRealize Automation 8.1Programmable Provisioning
Workflow Automation (vRealize Orchestrator)
Self-service catalog & consistent Governance (Service Broker)
Multi-Cloud and Infrastructure Automation (Cloud Assembly)
Deployment Automation with Operations (Code Stream)
CA
PA
BIL
ITIE
SC
AP
AB
ILIT
IES
PLA
TFO
RM
PLA
TFO
RM
Cloud Admin
SRE
Developer
DevOps Admin
USE
R P
ER
SON
AS
USE
R P
ER
SON
AS
INTE
NT
& P
OLI
CIE
SIN
TEN
T &
PO
LIC
IES
OU
TCO
MES
OU
TCO
MES
PUBLIC CLOUDSDDC (VCF) EDGE VMCVCPP
Cloud API
Blueprints: Declarative Multicloud Templates
EC2 EBS S3 ROUTE 53
REDSHIFT
RDS LAMBDA KMS KINESIS IAM EMR VM DISK STORAGE
SQL SEARCH REDIS DNS APP INSTANCE
DISKMACHIN
EVOLUME NETWORK LOAD
BALANCER
EC2 EBS S3 ROUTE 53
REDSHIFT
RDS LAMBDA KMS KINESIS IAM EMR VM DISK STORAGE
SQL SEARCH REDIS DNS APP INSTANCE
DISKMACHIN
EVOLUME NETWORK LOAD
BALANCERPO
LIC
IES
Programmable Provisioning
Closed Loop Optimization
vRealizeOperations
Increased resource
utilization
Freeing resources for
growth
Faster deployment
Hours saved per
VM
9
10
Confidential │ ©2020 VMware, Inc. 11
Single location for collecting, storing, and analyzing logs at scale
vRealize Log Insight 8.1
50% increase in cluster size
Up to 18 nodes in a single cluster!
Capable of ingesting over 4TB of logs per day
270,000 events per second
72 TB of log storage
Modern UI to provide a consistent look and feel with VMware products.
Confidential │ ©2020 VMware, Inc. 12
vRealize Operations 8.1 use casesConsistent operations for consistent infrastructure
Hybrid Cloud Operations
HCI Operations MulticloudMonitoring
App-aware Operations
Integrated Compliance
11
12
Confidential │ ©2020 VMware, Inc. 13
New vRealize Automation/Operations 8.1 integrationEnhanced “Closed Loop Optimization”
Shared Constructs
• Cloud Account, Cloud Zones, Projects, Users, Blueprints…
• Capacity
• Workload Optimization – Initial and Day 2
• Troubleshooting
Understand Deployment Costs
• Estimated Upfront Costs – Pre-Deployment
• Ongoing costs – Post Deployment
– VM, Deployment, Project
New Dashboards aligned to operational workflows
vRealize Operations 8.1
vRealize Automation 8.1
Cloud Zone Cloud Zone
Blueprint
Deployment
Project
Cloud AccountCloud Account
Project
Deployment
Blueprint
Organization
User
Organization
User
Shared Native Constructs
Integrated Costing and Visibility
VM metrics
Cost
Deployment View
Upfront and monthly cost
Confidential │ ©2020 VMware, Inc. 14
vRealize Suite Supports vSphere with Kubernetes
vRealize Suite enables:
• Managing Kubernetes clusters and namespaces
• Automated delivery, monitoring, troubleshooting and capacity management for container and VM workloads
VMware Cloud Foundation 4.0
VMware Cloud Foundation
ComputevSphere 7
Storage Network
Modern Cloud ManagementvRealize Suite
VM
Intrinsic Security & Lifecycle Automation
Data Center | Edge | Service Provider | Public Cloud
13
14
Confidential │ ©2020 VMware, Inc. 15
Programmable Provisioning Self-Driving Operations
The benefitsImprove productivity, reduce IT costs, and accelerate business
The Total Economic Impact of VMware vRealize Automation, July 2020 The Total Economic Impact of VMware vRealize Operations, March 2020
PRODUCTIVITY
5 to 6 hours saved per VMIT labor for deployment, Day 2 activities, and retirement
COST SAVINGS
15% increaseInfrastructure resource utilization
BUSINESS ACCELERATION
5x increaseAnnual churn rate of unneeded VMs, freeing resources for growth
1 week fasterDeployment of environments for end users
PRODUCTIVITY
30% improvement in productivity
COST SAVINGS
50% reduction in software licensing costs
20% reduction in hardware costs
10% reduction in storage costs
BUSINESS ACCELERATION
93% reduction in unplanned downtime
50% reduction in mean time to resolve
Confidential │ ©2020 VMware, Inc. 16
Industry recognition
Leader in Infrastructure Automation
Platforms
Leader in Hybrid Cloud Management
#1 in Cloud Systems Management (for 7 years!)
#1 in IDC Automation Software (for 4 years!)
Overall Leader in Ovum Decision Matrix: Selecting
a Multi- and Hybrid Cloud Management Solution
https://www.vmware.com/products/vrealize-suite.html#resources
15
16
Confidential │ ©2020 VMware, Inc. 17
Multicloud
Private, Hybrid, Public Cloud
Integrated
Common SDDC framework
App-focused
Developer, SRE DevOps teams
Intelligent
Closed Loop Optimization
Automated
Lifecycle Management
Better with Cloud Management
18Confidential │ ©2019 VMware, Inc.
vRelized Log Insight
17
18
Confidential │ ©2020 VMware, Inc. 19
Logical Design and Data Sources
vSphere
vRealize Operations Manager
NSX-T
vSAN
vRealize Automation
Site Recovery Manager
Workspace ONE Access
3rd Party Solutions
VMware Validated Design
Collects logs from all SDDC components
Confidential │ ©2020 VMware, Inc. 20
Network Design of vRealize Log InsightVMware Validated Design
FQDN Role Region
sfo01vrli01.sfo01.rainpole.local
Log Insight ILB VIP Region A
sfo01vrli01a.sfo01.rainpole.local
Primary node Region A
sfo01vrli01b.sfo01.rainpole.local
Worker node Region A
sfo01vrli01c.sfo01.rainpole.local
Worker node Region A
sfo01vrli01x.sfo01.rainpole.local
Additional worker nodes (not deployed)
Region A
lax01vrli01.lax01.rainpole.local
Log Insight ILB VIP Region B
lax01vrli01a.lax01.rainpole.local
Primary node Region B
lax01vrli01b.lax01.rainpole.local
Worker node Region B
lax01vrli01c.lax01.rainpole.local
Worker node Region B
lax01vrli01x.lax01.rainpole.local
Additional worker nodes (not deployed)
Region B
19
20
Confidential │ ©2020 VMware, Inc. 21
vRealize Log Insight Architecture
Log Insight
Agent
Syslog
(TCP/UDP 514)
Ingestion API
(HTTP 9000/9543)
Internal Load Balancer
Primary Node
Worker Nodes
Selective
Forwarding
Compressed
NFS Archival
Ingestion API
(HTTP 9000/9543)
Web UI
or Query
HTTP:80/443
nfs://Host/path
TCP/UDP 514
API 9000/9543
Confidential │ ©2020 VMware, Inc. 22
Advantages
Query HA and ingestion HA
UI can be served from all nodes
No singe point of failure for ingestion or UI
How does it work?
Integrated load balancer directs traffic to the leader
Leader sends subqueries to workers
Workers send result to leader
Leader aggregates results and displays in the UI
Leader Based Architecture
21
22
Confidential │ ©2020 VMware, Inc. 23
Leader Based Architecture
Confidential │ ©2020 VMware, Inc. 24
Preset Size Ingestion Rate Virtual CPUs Memory IOPS Connections Events/Sec
Extra Small 6GB/day 2 4GB 75 20 400
Small 30GB/day 4 8GB 500 100 2000
Medium 75GB/day 8 16GB 1000 250 5000
Large 225GB/day 16 32GB 1500 750 15,000
Sizing vRealize Log Insight
*Refer to the Sizing Calculator to determine what size cluster is required for a given environment.
*Max nodes is 18 (Primary + 17 Worker Nodes). Max Events per second is 15,000. Please refer to vRealize Log Insight Configuration Maximums for more information.
* Max storage per node 4 TB plus OS
23
24
Confidential │ ©2020 VMware, Inc. 25
Download the vRealize Log Insight Virtual Appliance
Deploy appropriately sized appliance, XS, S, M, L
Provision eager zeroed disks whenever possible
Specify no more than two DNS servers
Deploy additional nodes to support the environment
Join nodes to existing deployment (https://log-insight-host/)
Deploying vRealize Log Insight
Confidential │ ©2020 VMware, Inc. 26
Minimum 3 nodes in a cluster, recommended is 4
All nodes must be in the same data center
All load nodes and load balancer IP must be on the same L2 network
All nodes must be exactly the same size
All primary and worker nodes must have the same SSL certificate
Time must be synchronized on all nodes using the same NTP servers
Cluster Pre-requisites
25
26
Confidential │ ©2020 VMware, Inc. 27
Configure Load Balancing
Verify all nodes and Integrated Load Balancer IP address are on the same network
If you are using NSX, verify that the Enable IP Discovery option is disabled on the NSX logical switch
Primary and Worker nodes must have the same certificates
*External load balancers are not supported for use with vRealize Log Insight
Confidential │ ©2020 VMware, Inc. 28
Integration with vSphere
Required Permissions:
Host.Configuration.Change settings
Host.Configuration.Network configuration
Host.Configuration.Advanced Settings
Host.Configuration.Security profile and firewall
System.ViewNote:System.View
Required Privileges
Add vCenter Servers to Log Insight
27
28
Confidential │ ©2020 VMware, Inc. 29
Integration with vRealize Operations Manager
Install the Log Insight Management Pack in vRealizeOperations Manager
Configure Log Insight to connect to vRealize Operations Manager
Configure vRealize Operation Integration in Log Insight
Confidential │ ©2020 VMware, Inc. 30
Logs as Metrics in vRealize Operations
Gain visibility of log events alongside vRealize Operations Metrics
Visualize trends such as an increase in error messages or use Dynamic Thresholds to indicate when events are outside the norm.
Leverage vRealize Log Insight metrics within vRealize Operations Troubleshooting Workbench, Alerts, and Reports
Better integration with vRealize Operations
29
30
Confidential │ ©2020 VMware, Inc. 31
Preset Size Ingestion Rate Virtual CPUs Memory IOPS Connections Events/Sec
Extra Small 6GB/day 2 4GB 75 20 400
Small 30GB/day 4 8GB 500 100 2000
Medium 75GB/day 8 16GB 1000 250 5000
Large 225GB/day 16 32GB 1500 750 15,000
Sizing vRealize Log Insight
*Refer to the Sizing Calculator to determine what size cluster is required for a given environment.
*Max nodes is 18 (Primary + 17 Worker Nodes). Max Events per second is 15,000. Please refer to vRealize Log Insight Configuration Maximums for more information.
* Max storage per node 4 TB plus OS
Confidential │ ©2020 VMware, Inc. 32
Automatic event clustering
Cluster similar events: reverse engineer code that generated events
Happens at ingestion time, so zero impact on interactive analytics
Example: search returns 10,000 messages, but summarized in 10 event types
Schema discovery
Automatically understands the structure of the event
Automatic field extraction “smart fields” defined for each event, including their data types.
Interactive Analytics
Machine Learning
31
32
Confidential │ ©2020 VMware, Inc. 33
Interactive Analytics
Machine Learning (Cont.)
2,196 Unique event types grouped from most to fewest alerts by default
Similar events grouped together and listed by frequency of occurrence
Alerts grouped based on discovered patterns
Confidential │ ©2020 VMware, Inc. 34
Visualize Log Data Using Dashboards
Click on Interactive
Analytics to view log data
Use Dashboard
Filters
Select a Dashboard
33
34
35Confidential │ ©2019 VMware, Inc.
Administration
Confidential │ ©2020 VMware, Inc. 36
System MonitorHealth of Log Insight Cluster
Resources Verify information about the CPU, memory, IOPS, and storage usage on the vRealize Log Insight Virtual Appliance
Active Queries View Information about the queries that are currently active in vRealize Log Insight
Statistics View statistics about the ingest operations and rates
General System Notifications
35
36
Confidential │ ©2020 VMware, Inc. 37
Cluster ManagementDownloading Support Bundles
Download support bundle for the whole
cluster
Select streaming to save space
on the server
Select single node
Download Support Bundle
Confidential │ ©2020 VMware, Inc. 38
Access ControlAdd New Users, Groups
37
38
Confidential │ ©2020 VMware, Inc. 39
Access ControlData Sets
Confidential │ ©2020 VMware, Inc. 40
Configure Event ForwardingFilters
Using Filters
matches
*test* matches strings such as test123 or my-test-run.
does not match
test* filters out test123, but does not exclude mytest123.
%test* does not filter out test123, but does exclude xtest123
starts with
test finds test123 or test, but not my-test123
does not start with
excludes strings that start with the specified character string. For example, test filters out test123, but not my-test123.
39
40
Confidential │ ©2020 VMware, Inc. 41
Configure Event ForwardingEmail Notification
Confidential │ ©2020 VMware, Inc. 42
Cluster Upgrade
Connect to the Primary Node
Upload the .pak file
Click on Upgrade Cluster
41
42
Confidential │ ©2020 VMware, Inc. 43
Unlimited Log Export
Unlimited export released in Log Insight 8.0
If number of events <=20,000 then user can download logs locally.
If number of events >20,000 then user is asked to provide NFS path
Confidential │ ©2020 VMware, Inc. 44
Index Partitions and Variable Retention
Customizable retention periods for certain logs
Logs can be retained for one day or indefinitely*
Remove noisy insignificant logs while preserving valuable information
Maintain corporate and security posture
*requires archiving
43
44
Confidential │ ©2020 VMware, Inc. 45
Index Partitions and Buckets
Log Stream Ingestion Pipeline
vRealize Log Insight
Active Buckets
Archived & Sealed
Buckets
Deleted Buckets
Default PartitionPartition 1 Partition 2
Partition 1 Retention 7 Days
Confidential │ ©2020 VMware, Inc. 46
Log Archival
NFS partition must meet these requirements:
Reading and writing operations for guest accounts.
The mount must not require authentication.
The NFS server must support NFS v3 or v4.
If using a Windows NFS server, allow unmapped user UNIX access (by UID/GID).
The path created within an archive export is in the form year/month/day/hour/bucketuuid/data.blob
45
46
47Confidential │ ©2019 VMware, Inc.
Content PacksInstalling Content Packs
Confidential │ ©2020 VMware, Inc. 48
Ingredients of a Content Pack
Extracted Fields Queries Dashboards Alerts Agent Configurations
47
48
Confidential │ ©2020 VMware, Inc. 49
Content Pack Marketplace
Dashboards
Extracted Fields
Saved Queries
Alerts
Confidential │ ©2020 VMware, Inc. 50
Installing Content Packs
Install via UI
Download from Marketplace
49
50
Confidential │ ©2020 VMware, Inc. 51
vSphere with Kubernetes
New Dashboard included in vSphere Content Pack vSphere –Kubernetes
Overview of containers, pods, and namespaces.
New alerts “Kubernetes failed to start container” “Kubernetes Unhealthy Event”
Confidential │ ©2020 VMware, Inc. 52
Linux Content Pack
New content pack for newer Linux versions which are using systemd
New and updated dashboards
System Overview
Security Overview
Security Su/Sudo
Security Authentication
Systemd
51
52
Confidential │ ©2020 VMware, Inc. 53
Alerts
Confidential │ ©2020 VMware, Inc. 54
URL Dashboard Sharing
Quickly share point in time critical information with third parties or peer teams
Unauthenticated users have read-only to the shared dashboard
Dashboard URL’s can be configured to automatically expire or never expire
Administration page for managing shared dashboard URL’s
53
54
Confidential │ ©2020 VMware, Inc. 55
Openshift Dashboard with VRLI
Confidential │ ©2019 VMware, Inc. 56
“vRealized Operation Manager
55
56
Confidential │ ©2020 VMware, Inc. 57
One vRealize across On-Premises and SaaS
Operations Management Portfolio
vRealizeAutomationCLOUD
vRealizeOperationsCLOUD
vRealizeLog InsightCLOUD
vRealizeNetwork Insight CLOUD
SAAS
ON PREM
vRealize Cloud Management
vRealizeAutomation 8.1
vRealizeOperations 8.1
vRealizeLog Insight 8.1
vRealizeNetwork Insight 5.2
vRealize Suite 2019
New! AVAILABLE
Confidential │ ©2020 VMware, Inc. 58
Powered by AI, from apps to infra, across VMware Cloud and multiple public clouds, on-premises or SaaS
Self-Driving Operations For VMware Cloud
Unified Ops Platform
Powered by AI
Continuous Performance
Optimization
Efficient Capacity & Cost
Management
Integrated Configuration and
Compliance
App-Aware Intelligent
Remediation
57
58
Confidential │ ©2020 VMware, Inc. 59
Core components that make up the analytics platform for vRealize Operations
AI in vRealize Operations
Tech
no
logy
Alg
ori
thm
sU
se C
ases Alerting
Correlation Root Cause Analysis
Troubleshooting
Root Cause / Anomaly Detection
EffectCause
Anomaly
• Metric correlation using Pearson Correlation Coefficient to correlate
• Root cause analysis based on dynamic thresholds, anomalous events and configuration changes
• Smart Relationship: Auto discover environment based on pattern matching learned from Application signatures defined by users
• Alert ranking by importance and activity
Predictive Forecasting
Predictive DRS
Rightsizing Capacity Analytics
Workload Placement/ Balance
• Periodicity for all historical data.
• Calendar Awareness
• DFT and FFT (Discrete and Fast Fourier Transformation) for real time forecasting
• Exponential Decay (More weightage to recent data with losing periodicity
Action Framework
Self-Healing
Configuration Remediation
Approval Workflows
Orchestration
APPS
INFRA
USER
• Built-in python actions for remediation
• Integration with vRealize Orchestrator to orchestrate remediation and approval workflows
• Alert and Action workflow integration to trigger automated actions on event generation
Self Driving Engine
Confidential │ ©2020 VMware, Inc. 60
vRealize Operations CloudSame product available in SaaS or on-premises
Consume operations management either on-premises or SaaS
ON-PREM SAAS
CHOICE
Q3
SaaS Milestones
On-Premises Releases
Beta
vROps 8.1
Availability
Q4
2019
Q1 Q2
2020
vROps 8.0
Tech Preview
Q3 Q4
vROps 8.2
59
60
Confidential │ ©2020 VMware, Inc. 61
Simplified management of Application Monitoring
• Cloud Proxy contains the ARC components
• Single VA deployment for Cloud customers
• Ready for agent installs as soon as vCenter Cloud Account is created
Initially for Cloud
Onboarding Application Remote Collector vRealize Operations Cloud Exclusive
Confidential │ ©2020 VMware, Inc. 62
Available in vRealize Operations Cloud
Physical Server OS Monitoring
• Monitor Windows and Linux installed on physical hardware
• Provides parity with Endpoint Operations and Hyperic
• Targeted for on-premises vRealize Operations in a future release
vRealize Operations Cloud Exclusive
61
62
Confidential │ ©2020 VMware, Inc. 63
Agent Installation and Configuration
Physical Server OS Monitoring
Obtain binaries and sample scripts from Cloud Proxyhttps://<cloudProxyAddress>/downloads/salt
Use the sample scripts on Windows 2012R2 and 2016 or CentOS 7 and 8
Requires CSP Refresh Token for API calls
Make sure to validate requirements are met for each OS
Manual install steps provided in documentation if needed.
.\unmanagedagent_setup_sample.ps1 -cloudProxyIp <ip> -refreshToken <token> -installDirectory <dir>
vRealize Operations Cloud Exclusive
Confidential │ ©2020 VMware, Inc. 64
For OS and Remote Checks
Additional Metrics for Application Monitoring
Extra Metrics for OS Remote Checks
CPU –
• time_user (float)• time_active (float)• time_nice (float)• time_irq (float)• time_softirq (float)• time_steal (float)• time_guest (float)• time_guest_nice (float)• usage_user (float, percent)• usage_system (float, percent)• usage_idle (float, percent)• usage_active (float)• usage_nice (float, percent)• usage_iowait (float, percent)• usage_irq (float, percent)• usage_softirq (float, percent)• usage_steal (float, percent)• usage_guest (float, percent)• usage_guest_nice (float, percent)
Disk Utilization -
• Free• Total• Used
HTTP -
• response_time (float, seconds)• content_length (int, response body length)• http_response_code (int, response status code)
ICMP -• packets_transmitted (integer)• packets_received (integer)• percent_packets_loss (float)• average_response_ms (integer)• errors (float, Windows only)• result_code (int, success = 0, no such host = 1, ping error = 2)
TCP and UDP -• response_time (float, seconds)• result_code (int, success = 0, timeout = 1, connection_failed = 2,
read_failed = 3, string_mismatch = 4)
63
64
65Confidential │ ©2019 VMware, Inc.
Management Packs
Confidential │ ©2020 VMware, Inc. 66
Support for vRA 8.1
SDDC Health MP 8.1
Key highlights
• Support for vRA 8.1 using the SDDC Health Management Pack
• 40+ Health Services• Codestream• Kube API Server• Kube Scheduler• Catalog Service• Docker Registry
Service• Terraform Service
• Metrics show resource usage for each service
65
66
Confidential │ ©2020 VMware, Inc. 67
SNMP Management Pack
Monitor SNMP enabled devices
Create custom dashboards and alerts based on SNMP metrics
Support for SNMP v2c and v3
Auto-discovery per selected MIBs
Metrics must be enabled manually in policy
Import additional custom MIBs IP Range to Scan
MIB File
SNMPv3
SNMPv2c
Confidential │ ©2020 VMware, Inc. 68
NSX-T Management Pack
Integration with VMC Cloud Account wizard
Support for Policy Manager APIs
Configuration Maximum metrics and properties for SDDC monitoring
New Configuration Maximums Metrics and
Properties
VMC Cloud Account
Integration
67
68
Confidential │ ©2020 VMware, Inc. 69
Network Aware Troubleshooting in vRealize Operations
• For known objects in vROps & vRNI, vRNI events will synced as vROps alerts and they will be available in Trouble shooting workbench.
• For unknown objects and user defined events, vROps will show an alert under “vRNI-Others”.
• SSO and Launch in Context between vROps and vRNI for seamless transitioning.
vRealize Network Insight Networking Alerts in vROps
Confidential │ ©2020 VMware, Inc. 70
Network Aware Troubleshooting in vRealize Operations
• Shared objects will have a launch in context option in the Actions menu
• Available shared objects:
• Virtual Machine
• NSX-v Edge
• NSX-v Controller
• NSX Manager
• vSphere Host
• vSphere Cluster
Jump from vROps to vRNI
Jump to Edge Dashboard in vRNI
vRNI Alerts in context
69
70
Confidential │ ©2020 VMware, Inc. 71
Network Aware Troubleshooting in vRealize Operations
• Shared objects will have a launch in context option in the Actions menu
• Available shared objects:
• Virtual Machine
• NSX-v Edge
• NSX-v Controller
• NSX Manager
• vSphere Host
• vSphere Cluster
Jump from vROps to vRNI
Jump to VM Dashboard in vRNI
& Direct link to traffic details of VM
Confidential │ ©2020 VMware, Inc. 72
vRealize Operations Integration – Setting up
vRNI Adapter under Other Accounts
Enter vRNI Details & Validate Connection
All vRNIauthentication
methods supported
When validating, check and accept
vRNIs SSL certificate
71
72
Confidential │ ©2020 VMware, Inc. 73
Network flow monitoring and troubleshooting, using traffic and path analytics
Application Latency and Network Performance
Deep network operations visibility & troubleshooting – path analytics, connectivity, optimize app network performance
Monitor VCF and VMC (compute, storage and network component health)
Health of NSX-T
Disk space, CPU, Memory alerts for Edges
Monitor devices with SNMP MIBs (including custom MIBs)
vRealize Network Insight vRealize Operations
Network Monitoring PositioningvRealize Network Insight and vRealize Operations
Confidential │ ©2020 VMware, Inc. 74
VROP Dashboard for Kubernetes
73
74
Confidential │ ©2020 VMware, Inc. 75
VROP Dashboard for Kubernetes
Confidential │ ©2020 VMware, Inc. 76
VROP Dashboard for Kubernetes
75
76
Confidential │ ©2020 VMware, Inc. 77
VROP Dashboard for Kubernetes
Confidential │ ©2019 VMware, Inc.
vRealize Automation
77
78
Confidential │ ©2020 VMware, Inc. 79
vRealize Automation 8.1Programmable Provisioning
Workflow Automation (vRealize Orchestrator)
Self-service catalog & consistent Governance (Service Broker)
Multi-Cloud and Infrastructure Automation (Cloud Assembly)
Deployment Automation with Operations (Code Stream)
CA
PA
BIL
ITIE
SC
AP
AB
ILIT
IES
PLA
TFO
RM
PLA
TFO
RM
Cloud Admin
SRE
Developer
DevOps Admin
USE
R P
ER
SON
AS
USE
R P
ER
SON
AS
INTE
NT
& P
OLI
CIE
SIN
TEN
T &
PO
LIC
IES
OU
TCO
MES
OU
TCO
MES
PUBLIC CLOUDSDDC (VCF) EDGE VMCVCPP
Cloud API
Blueprints: Declarative Multicloud Templates
EC2 EBS S3 ROUTE 53
REDSHIFT
RDS LAMBDA KMS KINESIS IAM EMR VM DISK STORAGE
SQL SEARCH REDIS DNS APP INSTANCE
DISKMACHIN
EVOLUME NETWORK LOAD
BALANCER
EC2 EBS S3 ROUTE 53
REDSHIFT
RDS LAMBDA KMS KINESIS IAM EMR VM DISK STORAGE
SQL SEARCH REDIS DNS APP INSTANCE
DISKMACHIN
EVOLUME NETWORK LOAD
BALANCERPO
LIC
IES
Programmable Provisioning
Closed Loop Optimization
vRealizeOperations
Increased resource
utilization
Freeing resources for
growth
Faster deployment
Hours saved per
VM
Confidential │ ©2020 VMware, Inc. 80
vRealize Automation 8.1 use casesCustomers scenarios on journey to multicloud
Self-Service Hybrid Cloud
Multi-Cloud Automation with
Governance
Infrastructure DevOps Kubernetes Infrastructure Automation
79
80
Confidential │ ©2020 VMware, Inc. 81
Setup the cloud
1. Setup
CLOUD ZONE CLOUD ZONE CLOUD ZONE
Cloud platform constructs
1
• Automate setup from virtualization (VCF/VMC) to catalog/policies
• Carve infra into zones based on capability and availability
• Create network and storage profiles for cloud zones
• Create tenants across compute, storage, network, images, content
• Create projects, user accounts and ready to use catalog
• Visualize all cloud infra in a unified dashboard
GLOBALLY SHARED
CATALOG
Public CloudData CenterEdge Managed Data Center
Workload domain
Compute Storage Network
Workload domain
Compute Storage Network
Workload domain
Compute Storage Network
vRAvRO
LCM
SDDC MGR
vROps
BLUEPRINT
Physical Infrastructure
Image mappings
Flavors Storage profilesProjects
ProviderVI AdminCloud Admin
Confidential │ ©2020 VMware, Inc. 82
Provision & orchestrate infra & apps
2. Deploy
• Request apps from self-service catalog of curated content
• Deploy everything through UI, API and as code across clouds
• Integrate OOB with systems including IPAM, config mgmt., Terraform & public cloud services
• Define and manage your own services
• Automate infra, app & service deployments with a pipeline
• Manage Kubernetes clusters, namespaces
2
Public CloudData CenterEdge Managed Data Center
LOB User DeveloperCloud admin
VMs Containers (Pacific/TKG)
Programmable Provisioning
Cloud API
Blueprints: Multi-Cloud Templates
Catalog & PolicyWorkflow Orchestration
Continuous Delivery
PO
LIC
IES
Tanzu Third-Party Tools
EC2 EBS S3 ROUTE 53 REDSHIFT RDS LAMBDA KMS KINESIS IAM EMR VM DISK STORAGE SQL SEARCH REDIS DNS APP INSTANCE DISKMACHINE VOLUME NETWORK LOAD
BALANCERK8S CLUSTER K8S
NAMESPACE
81
82
Confidential │ ©2020 VMware, Inc. 83
Manage performance, capacity, costs of your cloud
3. Manage
• On board & monitor brownfield apps with app discovery
• Enforce policies/guardrails for provisioned and discovered resources across orgs and projects
• Monitor & view SLOs for all services
• Troubleshoot issues with AI/ML-driven root cause analysis, visibility tools & OOB Skyline knowledge
• Remediate issues and automate actions with powerful OOB & custom workflows
3
R E S O U R C E S A C R O S S C L O U D S
Rule based automated onboarding
Public CloudData CenterEdge Managed Data Center
ProviderCloud Admin, Tenant Admin
Confidential │ ©2020 VMware, Inc. 84
A P P L I C A T I O N S
D E P L O Y
Pipeline as code
Appmetrics
App tracing
Applogs
4. Run your apps
• View data (health metrics, cost, security, compliance, usage) on your tenant, projects and applications
• Manage budget, compliance, access and other policies
• Manage and optimize your app deployment including right sizing and reclamations
• Continuously deploy and update your apps with automated pipeline
• Manage app and developer productivity metrics
• Observe app metrics and logs in context of the deployment
4
R E S O U R C E S A C R O S S C L O U D S
Public CloudData CenterEdge Managed Data Center
Project admin, Developer
83
84
Confidential │ ©2020 VMware, Inc. 85
Evolution of our portfolioSame product available in SaaS or on-premises (starting with vRealize Automation 8.0)
Consume management either on-premises or SaaS
ON-PREM SAAS
CHOICE
VRA CLOUD (SaaS)
VRA(On-Premise Releases)
vRA 7.6 vRA 8.0
2019H1 H2
APR 2019 JULY 2019 JULY 2020
H22020
OCT 2019 JAN 2020 APR 2020
H1
vRA 8.1 vRA 8.X
MIGRATION ASSISTANT
(Enables migration from
vRA 7.5, 7.6)
OCT 2020
MIGRATION ASSESSMENT SERVICE
vRA 8.0.1
MIGRATION ASSESSMENT SERVICE
Confidential │ ©2020 VMware, Inc. 86
KEY USE CASE PARITY WITH VRA7
ENTERPRISE READY PLATFORM
INNOVATIVE, DEVOPS ENABLED
8.1VREALIZE AUTOMATION
85
86
Confidential │ ©2020 VMware, Inc. 87
Capability Advanced Enterprise
Infrastructure as a Service ● ●
Unified service catalog ● ●
Self-service provisioning ● ●
Governance and compliance policies ● ●
Resource lifecycle management (Day 2 operations) ● ●
Extensibility ● ●
Anything as a Service (Xaas) ● ●
Hybrid Cloud (VMware Cloud on AWS) ● ●
Multi-cloud capabilities, including cloud agnostic blueprints ●
Code stream for DevOps ●
Application provisioning and management ●
Kubernetes support ●
vRealize Automation 8.1 Editions
Confidential │ ©2020 VMware, Inc. 88
vRA7.x and vRA8.x Comparison Overview
Capability vRA7.x vRA8.0.1 vRA8.1 vRA8.1+
Infrastructure as a Service ● ● ● ●
Infrastructure as Code ● ● ●
Service Definition Authoring (blueprinting) ● ● ● ●
Unified service catalog ● ● ● ●
Self-service provisioning ● ● ● ●
Governance and compliance policies ● ● ● ●
Resource lifecycle management (Day 2 operations) ● ● ● ●
vRO-based Extensibility ● ● ● ●
Anything as a Service (XaaS) ● NA ● ●
Action Based Extensibility (ABX) NA ● ● ●
Hybrid Cloud (VMware Cloud on AWS) ● ● ● ●
Multi-cloud capabilities, including cloud agnostic blueprints NA ● ● ●
DevOps / Infrastructure Pipelines (i.e. Code Stream) N/A ● ● ●
Software Configuration Options ● ● ● ●
Application provisioning and management ● ● ● ●
Kubernetes support ● ● ● ●
Integration with vSphere with Kubernetes (Managing Namespaces of Supervisor Clusters) NA NA ● ●
NSX-T/V Support ● ● ● ●
● majority use case parity ● partial use case parity
87
88
Confidential │ ©2020 VMware, Inc. 89
Mapping vRA 7.x Constructs to vRA 8.x
Service Broker User
Custom Resource*
Onboarding
Flavor Mapping
Image Mapping
Custom Property Group
Custom Property
Event Broker
XaaS
Blueprint
Deployment
Cloud Assembly User
Business User
Software Component
Bulk Migration
Component Profile
Custom Property Group
Custom Group
Event Broker
XaaS
Blueprint
Deployment
Blueprint Architect
Shared Access User
Support User
Service Broker User
Service Broker User
Lease Policy
Cloud Account
Content Sharing
Day 2 Action Policy
Approvals
Project
Cloud Zone
Network Profile
CPU / RAM Limits
Storage Limits
Storage Profile
Network Profile
Project Admin
Project
Organization
Cloud Zone
Lease Policy
Endpoints
Entitlements
Entitlements (Day 2)
Approvals
Reservation Policy
Compute Reservation
Storage Reservation
Network Profile
Business Group Admin
Business Group
Tenant
Fabric Group
IaaS
/ C
on
ten
t /
Exte
nsi
bili
tyR
BA
C
Go
vern
ance
Sys
Ob
ject
RB
AC
OrgR
eser
vati
on
s
https://docs.vmware.com/en/vRealize-Automation/8.0/using-the-vrealize-automation-migration-assessment-service.pdf *roadmap item
Confidential │ ©2020 VMware, Inc. 90
KEY USE CASE PARITY WITH VRA7
ENTERPRISE READY PLATFORM
INNOVATIVE, DEVOPS ENABLED
8.1VREALIZE AUTOMATION
89
90
Confidential │ ©2020 VMware, Inc. 91
Build your own reusable building blocks based on vRO workflows
Custom Resources
Cloud Assembly
App Blueprint SETTINGS VERSION HISTORY. ACTIONS
Blueprints
Search
Rich out of the box resource types for Hybrid cloud and native public clouds
Custom resource types
Custom component
CREATE
UPDATE
DELETE
START
STOP
CUSTOM1
WF-Provision
WF-Update
WF-Terminate
WF-Start
WF-Stop
WF-Custom1
COMPONENT LIFECYCLE ACTIONS
COMPONENT CUSTOM DAY2 ACTIONS
COMPONENT ATTRIBUTES
value1
value2
attribute1
attribute2
V R O W O R K F L O W S
WF-Provision
Custom integrations based on vRO workflows and dynamic types for full lifecycle management
DRAG & DROP COMPONENTS
REUSABLE
FULL LIFECYCLE MGMT
AUTO POPULATED SCHEMA
ACCESS CONTROL (PROJECT)
BUILD CUSTOM INTEGRATIONS
Confidential │ ©2020 VMware, Inc. 92
RESOURCE TYPE
Decorate resource types with powerful workflows
Custom Day2 Actions
Cloud Assembly
App Deployment ACTIONS
ACTIONSDb Tier
Create Snapshot
Delete Snapshot
Power off
Power on
Reboot
Reset
Resize
Revert to Snapshot
Shutdown
Suspend
Backup Action
Custom workflowREST API
API SSH
SSH POWERCLI
BUILT-IN ACTIONS
CUSTOM ACTIONS
V R O W O R K F L O W S
WF-Backup
91
92
Confidential │ ©2020 VMware, Inc. 93
Windows Server 2016
Windows Server 2016 Datacenter Edition
RedhatEnterpriseLinux
Redhat Enterprise Linux 7
Ubuntu Bionic Linux
Ubuntu Bionic Linux (18.04 LTS)
REQUESTREQUESTREQUEST
NSX Network
Create a network in SDDC
CICD Pipeline
CICD Pipeline
NSX Security group
Ubuntu Bionic Linux (18.04 LTS)
REQUESTREQUESTREQUEST
Service Broker
Catalog
Admin oversight for deployment and day2 action requests
Approval policies
Notification
Project Admin
Project Users
PROJECTS
Self-service catalog
DAY1 – INITIAL REQUEST
NotificationCloud Admin
Lease Active
Approved
Rejected
ApprovalRequest Pending
EFFE
CTI
VE
AP
PR
OV
AL
PO
LIC
Y
Approvers: (User based approver)Scope (Org or project)CriteriaApproval needed (Any or All)Auto approval:
Auto approval action approve/rejectTimeout period
Actions to trigger:Deploy (default)Day 2 actions
DEPLOYMENT LEVELRESOURCE LEVEL
Request received
ACTIVE DEPLOYMENT
EXPIRED DEPLOYMENT
DELETED DEPLOYMENT
Notification
APPROVAL DECISION
APPROVE
DENY
DAY2 – ACTION REQUEST
Lease Expired Lease TerminatedREQUEST REJECTED
Expired
REQUEST EXPIRED
APPROVAL DECISION
APPROVE
DENY
Confidential │ ©2020 VMware, Inc. 94
Resource limits for cloud zones
AWS AZURE GCPVMWARE SDDC
RegionDatacenter Region Region
Clusters Availability zones
Capability tags
Cloud accounts
Regions
Cloud Zones
Projects
CLOUD ZONE
Cluster/ AZ PCIVDI
CLOUD ZONECLOUD ZONE
Project Admin
Project Users RESOURCE LIMITS
INSTANCES
CPU
MEMORY
STORAGE
No provisioning allowed once the limit is reached
93
94
Confidential │ ©2020 VMware, Inc. 95
Resource Limit Details
• Resource limits for storage, memory, and cpu can now be set by Project at the Cloud Zone Level
• Set limits per deployment for a specific group of users
• Prevent overuse of a specific set of infrastructure resources
• Allows overallocation across Projects and Cloud Zones
• Storage limits for vSphere Cloud Zones only
Confidential │ ©2020 VMware, Inc. 96
Infra multitenancy - Multiple orgs , separate configuration
Multitenancy
Hybrid cloud
Native public cloud
DEDICATED
T E N A N T O R GT E N A N T O R G T E N A N T O R G
SHARED SHAREDDEDICATED DEDICATED DEDICATED DEDICATED DEDICATED DEDICATEDCLOUD ZONES & PROFILES
DEPLOYMENTS & RESOURCES
CONTENT & POLICIES
Blueprints Images Configuration Blueprints Images Configuration Blueprints Images Configuration
Day2 action access policy
Lease policy Approval policy
Day2 action access policy
Lease policy Approval policy
Day2 action access policy
Lease policy Approval policy
DEDICATED DEDICATED DEDICATED
Blueprints Images Configuration
Day2 action access policy
Lease policy Approval policy
95
96
Confidential │ ©2020 VMware, Inc. 97
Provider creates tenant orgs and onboards tenant infrastructure
Provider Workflow
VCPP / VMC
PUBLIC CLOUD
EDGE
SDDC (VCF)
Provider Admin
Tenant OrganizationsPROVIDER ORGANIZATION
Cloud region
Region / AZ
Datacenter / Cluster
Cloud zones are dynamically determined. Infra profiles provide abstraction
CLO
UD
ZON
ES & P
RO
FILES
Provider Admin
Tenant Users
Confidential │ ©2020 VMware, Inc. 98
Created and Managed Through LCMProvider and Tenant Organizations - Multitenancy
VCPP / VMC PUBLIC CLOUDSDDC (VCF) EDGE
PROVIDER ORGANIZATIONProvider
Admin
TENANT ORGANIZATIONS
Content sharing
NamingpolicyLease policy
Taggingpolicy
POLICIES & GOVERNANCE
CONTENT
Blueprints Images Configuration
PROVISIONED RESOURCES
CLOUD ZONES & PROFILES
D E P L O Y M E N T S
Datacenter / Cluster
Region / AZ Cloud region
Approval policy
ResourcepolicyEntitlement
Project Users
PROJECTS
Provider or Tenant Admin
Tenant Users
INFRASTRUCTURE
Per Tenant DEDICATED
97
98
Confidential │ ©2020 VMware, Inc. 99
Multitenancy Support
• Opt-in feature for vIDM and vRA
• Configured and managed through LCM
• Enables tenancy in vIDM and vRA
• Dedicated infrastructure multitenancy
Confidential │ ©2020 VMware, Inc. 100
Network automation enhancements
IPAM SDK
AVAILABLE NOWFUTURE/
ROADMAP
FUTURE/ ROADMAP
ABX3rd PARTY IPAM PROVIDER
ZIP archive
Allocate IPDeallocate IPGet IP rangesUpdate recordValidate endpointAllocate IP rangeDeallocate IP rangeGet IP blocks
NAME
DESCRIPTION
RULES
NAMEDIRECTION: INBOUNDSERVICEPROTOCOLPORTSSOURCE
TYPE
NAMEDIRECTION: OUTBOUNDSERVICEPROTOCOLPORTSDESTINATION
On-Demand SECURITY GROUPS IPAM SDK Day-2 Network Reconfiguration
Reconfigure day2 update action
99
100
Confidential │ ©2020 VMware, Inc. 101
Full Support for NSX Security Groups
• Security Group support for NSXv and NSX-T:
• New (on-demand) security groups• Existing security groups
• Control security group membership through a network profile or the blueprint canvas
• Assign firewall rules and services to on-demand security groups
• Security groups assigned to NIC with multiple NICs supported
Confidential │ ©2020 VMware, Inc. 102
Day-2 Reconfiguration of Networks
• Ability to change the network associated with a deployment
• Available as a day-2 update action for the deployment
• Use inputs in blueprint to allow network choice
• Networks must be part of same network profile
• Existing Networks• DHCP required
101
102
Confidential │ ©2020 VMware, Inc. 103
IPAM SDKCloud Assembly
• A great new toolkit for developing a package that enables integration of a third-party IPAM provider with vRealizeAutomation and vRealize Automation Cloud.
• The download package provides a sample implementation of a third party IPAM provider
• Technical guidance explains how to build an IPAM integration that conforms to vRA'sexpectations for a third-party IPAM provider.
• Available on My VMware
Confidential │ ©2020 VMware, Inc. 104
103
104
Confidential │ ©2020 VMware, Inc. 105
View only roles
ORG LEVEL
Organization Admin
Admin User Support user
Cloud Assembly
Admin User Support user
Service Broker
Admin User Support user
Code Stream
SERVICE LEVEL
PROJECTLEVEL
Admin User Support user
Project X
Admin User Support user
Project Y
Admin User Support user
Project Z
Admin User Support user
Project …
New view only role that can be assigned for all the services within vRealizeAutomation 8.1.
Set of permissions
Role
Confidential │ ©2020 VMware, Inc. 106
Cost information at multiple levels before or after provisioning
Pricing for hybrid cloud resources
Cloud Admin
PROJECTS
DEPLOYMENTS
PROJECT LEVEL AGGREGATED PRICE
DEPLOYMENT LEVEL PRICE
COMPONENT PRICE
+ADDITIONAL CHARGES
COST
PROVIDER CONSUMER
Cost based on customizable cost drivers + Ratecard
PRICING RATECARD
BASIC CHARGES
ADDITIONAL CHARGES
OVERALL CHARGES
PROJECTSCOPED
CLOUD ZONESCOPED
INITIAL
INITIAL + RECURRING CHARGES
105
106
Confidential │ ©2020 VMware, Inc. 107
Cloud Assembly
App Deployment ACTIONS
ACTIONSDb Tier
PRICE
Deployment health statusIn-context views of operations & hybrid cloud price
HEALTH METRICS
HEALTH STATUS
DEPLOYMENT
Topology Monitor Price
Confidential │ ©2020 VMware, Inc. 108
107
108
Confidential │ ©2020 VMware, Inc. 109
Cloud Foundation in vRealize Automation 8.1Setup cloud from VCF workload domains via QuickStart Menu
Self-service hybrid cloud with governance
Rich out of the box experience
Populated catalog
Pre-configured lease and approval policies with defaults
Connect your SDDC
Configure your infrastructure
Specify the policies
SAMPLE VM TEMPLATE DEPLOYMENT
NETWORK AUTOMATION BLUEPRINTS
DEFAULT LEASE POLICY
DEFAULT NAMING POLICY
VMware Cloud Foundation SDDC
Manager
vCenter + NSX
1 2 3
Confidential │ ©2020 VMware, Inc. 110
Marketplace OVAs as catalog item
Windows Server 2016
Windows Server 2016 Datacenter Edition
RedhatEnterpriseLinux
Redhat Enterprise Linux 7
Ubuntu Bionic Linux
Ubuntu Bionic Linux (18.04 LTS)
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15
REQUEST REQUESTREQUESTREQUEST
NSX Network
Create a network in SDDC
CICD Pipeline
CICD Pipeline
NSX Security group
Ubuntu Bionic Linux (18.04 LTS)
Build & deploy app
Trigger infra pipeline
REQUEST REQUESTREQUESTREQUEST
Service Broker
Catalog
O V A S F R O M M A R K E T P L A C E S E R V I C E B R O K E R
DEVELOPERS REQUEST OVAS FROM CATALOG
ADD CATALOG ITEMS TO PROJECTS
OVAS ARE SYNCHRONIZED, FORMS AUTO-CREATED
MARKETPLACE AS A CONTENT SOURCE
109
110
Confidential │ ©2020 VMware, Inc. 111
On-demand execution of pipelines for developers from the catalog
Pipeline in Service Broker
BUILD UNIT TESTS
INTEGRATION TESTS
REVIEW STAGING PRODUCTION
ROLLBACKTRIGGER PIPELINE
CI CD
Project Admin
Project Users
Windows Server 2016
Windows Server 2016 Datacenter Edition
RedhatEnterpriseLinux
Redhat Enterprise Linux 7
Ubuntu Bionic Linux
Ubuntu Bionic Linux (18.04 LTS)
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15
REQUEST REQUESTREQUESTREQUEST
NSX Network
Create a network in SDDC
CICD Pipeline
CICD Pipeline
NSX Security group
Ubuntu Bionic Linux (18.04 LTS)
Build & deploy app
Trigger infra pipeline
REQUEST REQUESTREQUESTREQUEST
Service Broker
Catalog
REQUEST
CO
DE
STR
EAM
SER
VIC
E B
RO
KER
Confidential │ ©2020 VMware, Inc. 112
PKS, Openshift, vSphere7
Kubernetes support
Cluster management
Manage & Govern, Monitor Kubernetes Clusters and Namespaces
Discover, Import Clusters,
Self-service for developers
Request K8s Cluster, Namespace from Catalog
Manage Clusters and Namespaces
K8s CLUSTER
[NAMESPACE] [NAMESPACE] [NAMESPACE]
Enterprise PKS vSphere (Project Pacific)
Application deployment
Kubernetes application deployment on clusters from pipeline
OpenshiftContainer Platform
111
112
Confidential │ ©2020 VMware, Inc. 113
Cloud Assembly
OpenShift 3.X Support
VMware Cloud Management strategy is evolving very quickly these days. We are more and more opening our arms to integration with other platforms to be a control plane layer above as many aspects of multi-cloud environments as possible. Our latest integration to expand the platform to help IT operators maintain the ever grow landscape of capabilities is with Red Hat OpenShift.
Once integrated you can create namespaces and assign them to projects in Cloud Assembly allowing for governance and control.
Confidential │ ©2020 VMware, Inc. 114
Cloud Assembly
Ansible Tower Integration
• Support for Ansible Tower allows customers to run Ansible Tower Job Templates from our blueprint canvas.
• Incorporating existing Ansible Tower instances into vRealize Automation gives customers another option for configuration management along with Puppet and Ansible Open Source.
• The Ansible Tower and/or Engine can be on-prem or in the cloud. The nodes that will be managed or deployed could also be on-prem or in the cloud.
• The integration provides maximum flexibility when integrating with these solutions.
113
114
Confidential │ ©2020 VMware, Inc. 115
Active Directory IntegrationCloud Assembly
Allow consumption of Cloud Zones based on Tags
Dynamic validation of AD integration settings during authoring
Machine assigned to correct Organization unit based on the Project the deployment user is assigned in Cloud Assembly.
When deployment is deleted the machine account is Active Directory is also deleted.
vRA Cloud Requires deployment of new On-Prem Extensibility Action appliance
Confidential │ ©2020 VMware, Inc. 116
Cloud Assembly
PowerShell Support for ABX Actions
Action Based Extensibility (ABX) is a serverless function capability integrated into vRealize Automations Cloud Assembly Service. Previously ABX only supported Python and NodeJS scripting languages. With the release of vRealize Automation 8.1 the on-premises ABX appliance will now support running PowerShell (PS) natively as a serverless function. This will allow you to use all the power of PowerShell without the need to create PS Hosts and complex infrastructure to support PS scripting.
115
116
Confidential │ ©2020 VMware, Inc. 117
Confidential │ ©2020 VMware, Inc. 118
vRO Enhancements
SCRIPTABLE TASK TREE VIEW GIT IMPROVEMENTS
Workflow
DEBUG WORKFLOWS
117
118
Confidential │ ©2020 VMware, Inc. 119
Support for Multiple Scripting Languages
You can now use PowerShell, Nodejs, and Python for tasks in workflows along side the traditional vRealize Orchestrator java scripting language!! This is a huge advancement for vRealize Orchestrator. No more need to have a PowerShell Host to run PowerShell scripts. Plus the inclusion of Nodejs and Python make creating sophisticated workflows easier by using existing libraries for those languages!!
Note: This feature is only available with a vRA license.
Chris is HUGE
Confidential │ ©2020 VMware, Inc. 120
Tree View is Back…well Folders!!
The tree view that everyone was familiar with in vRealize Orchestrator was not available when the switch to the HTML 5 client happened. With the release of vRealize Orchestrator 8.1 a version of the tree view is back with hierarchical folders. Now you can easily organize your workflows as you did in previous version.
119
120
Confidential │ ©2020 VMware, Inc. 121
Visual Differences and Source Control Enhancement
• vRealize Orchestrator now supports syncing workflows to different branches from a Git repository. Before it was only available to source control to a single branch. This allows promotion of code through normal git operations and PR requests.
• You can also see the visual differences between versions of a workflow in the workflow designer under version history.
Note: The Date and Time are automatically added to the version.
Confidential │ ©2020 VMware, Inc. 122
Source Control Enhancement
vRealize Orchestrator now supports syncing workflows to different branches from a Git repository. Before it was only available to source control to a single branch.
This allows promotion of code through normal git operations and PR requests.
Once the Git repository has been configured, workflow developers can use the Version action from within the workflow editor to push a new version to the repository.
121
122
Confidential │ ©2020 VMware, Inc. 123
Debug workflows at Schema Elements
You can now debug workflows at any element within the workflow by simply clicking the red box on the element and running the workflow. This will allow you to quickly move through workflow development.
Confidential │ ©2020 VMware, Inc. 124
Run and Debug Actions
vRealize Orchestrator 8.1 introduces the ability to run and debug actions directly from the Action itself.
Break points can be added to the Script to debug variables during the Action run, as well as creating “Watch expressions” to be evaluated as you step through the code.
123
124
Confidential │ ©2020 VMware, Inc. 125
Custom CSS allows you to import a stylesheet to customize the appearance of forms, which allows you to create a richer user experience
Service BrokerCustom Forms Enhancements
Confidential │ ©2020 VMware, Inc. 126
Complex Input Types in Service Broker allow you to consume vRealize Orchestrator Workflows with complex inputs as Catalog Items. This is especially useful to capture information for XaaS (anything as a service) workflows and facilitates the use of custom types in vRealize Automation.
Service BrokerComplex Input Types
125
126
Confidential │ ©2020 VMware, Inc. 127
In addition to the vRealize Log Insight integration provided in vRealize Orchestrator, you can now configure remote syslog support for one or more syslog servers.
Remote syslog is configured using the vracli command line tool (for both vRO embedded on vRA, and vRO standalone)
Remote Syslog Support
$ vracli remote-syslog set --agent_id syslog-config1 tcp://10.20.30.40:514
$ vracli remote-syslog set --agent_id syslog-config2 --disable-ssl tcp://10.20.30.40:514
$ vracli remote-syslog set --agent_id syslog-config2 --force udp://10.20.30.40
$ vracli remote-syslog set --agent_id syslog-config3 --ca-file /etc/ssl/certs/ca.crt
udp://10.20.30.41
$ vracli remote-syslog --force --agent_id syslog-config1 unset
$ vracli remote-syslog --force unset
Confidential │ ©2020 VMware, Inc. 128
• Kubernetes Zones in Service Broker• Service Broker admins can manage Kubernertes Zones in Service Broker and add these zones to different Projects
• Storage-persistent disk (currently only through API)• Ability to ensure disk doesn't get deleted on deployment\VM delete, ability to create a disk independent of a VM
• Bulk deployment request• A user can select the number of deployments to create from a single blueprint at blueprint request time so that I
may deploy multiple environments in a single request
• Network Extensibility Events• Add and remove network and load balancer objects from the network profile during deployment or deletion
• Support for vSphere7
Other Features
vRealize Automation 8.1
127
128
Confidential │ ©2020 VMware, Inc. 129
Windows Server 2016
Windows Server 2016 Datacenter Edition
RedhatEnterpriseLinux
Redhat Enterprise Linux 7
Ubuntu Bionic Linux
Ubuntu Bionic Linux (18.04 LTS)
REQUESTREQUESTREQUEST
NSX Network
Create a network in SDDC
CICD Pipeline
CICD Pipeline
NSX Security group
Ubuntu Bionic Linux (18.04 LTS)
REQUESTREQUESTREQUEST
Service Broker
Catalog
Automated Cloud Setup for the selected SDDC
vRealize Automation Cloud TRIAL for VMC customers
VMware Cloud on AWS
SDDC
Summary Network. Add Ons
SDDCs Subscriptions Activity Log
vRealize Automation Cloud
Enable automated workload provisioning by setting up a self-service infrastructure for your developers and manage it with governance policies that give you insight and control
ACTIVATE
v R e a l i z e A u t o m a t i o n C L O U DV M w a r e C l o u d o n A W S
Confidential │ ©2020 VMware, Inc. 130
VRA 8.x with TKG Cluster
129
130
Confidential │ ©2020 VMware, Inc. 131
VRA 8.1 with TerraForm
Confidential │ ©2020 VMware, Inc. 132
What's New vRA 8.1 - Technical Overview http://blogs.vmware.com/management/2020/04/whats-new-with-vrealize-automation-8-1-technical-overview.html
PowerShell for ABX https://blogs.vmware.com/management/2020/03/vra-abx-powershell.html
Pipeline as a Catalog https://blogs.vmware.com/management/2020/03/cspipeascatalog.html
VCF Integrationhttp://blogs.vmware.com/management/2020/04/vrealize-automation-8-1-and-vcloud-foundation-integration-enhancements.html
What's New vRSLCM http://blogs.vmware.com/management/2020/04/whats-new-in-vrealize-lifecycle-configuration-manager-8-1.html
Day-2 Network Update http://blogs.vmware.com/management/2020/04/update-nsx-networks-using-cloud-assembly.html
Network Automation with NSX 4-part series https://blogs.vmware.com/management/2019/04/network-automation-cloud-assembly-and-nsx-part-1.html
Approvals https://blogs.vmware.com/management/2020/03/approvals-in-vra.html
Custom Forms, vRO property support in SB, and Composite vRO types.
http://blogs.vmware.com/management/2020/03/service-broker-custom-forms-enhancements
XaaShttp://blogs.vmware.com/management/2020/04/introducing-custom-resources-and-resource-actions-in-vrealize-automation.html
Resource Limits https://blogs.vmware.com/management/2020/03/vra-resource-limits.html
Active Directory Enhancements https://blogs.vmware.com/management/2019/08/cloud-assembly-active-directory-integration.html
Provider and Tenant Org Multi-tenancy http://blogs.vmware.com/management/2020/04/introducing-multitenancy-support-vrealize-automation-81.html
OpenShift Support http://blogs.vmware.com/management/2019/11/ca-supports-os.html
What's New vRealize Orchestrator http://blogs.vmware.com/management/2020/04/whats-new-in-vrealize-orchestrator-8-1.html
Ansible Tower https://blogs.vmware.com/management/2020/02/introducing-ansible-tower-integration-with-vrealize-automation.html
OVA Content Source https://blogs.vmware.com/management/2020/01/ova-content.html
Kubernetes Across vRealize Automation https://blogs.vmware.com/management/2019/06/kubernetes-across-vmware-cloud-automation-services.html
Dynamic SGs https://blogs.vmware.com/management/2019/08/network-automation-with-cloud-assembly-and-nsx-part-3.html
IPAM SDK - UI Elements https://blogs.vmware.com/management/2019/08/cloud-assembly-infoblox-ipam-integration.html
Additional Resources – Feature Related Blogs
131
132
Confidential │ ©2019 VMware, Inc.
Thank You
133