Trusted SSL certificates in OSX 10.15+ and iOS 13+

I deployed a new vSphere VCSA for my homelab in December 2019 (last month). By default these come with a self-signed SSL certificate that's valid for 10 years. Of course I typically replace these with a signed certificate but it's not always the first thing that I do. What I found this time however is that on my Mac neither Chrome or Brave would allow me to reach the web UI. Only Firefox would. I expect security warnings for self-signed (and hence untrusted) certificates. On the former two browsers though the message suggests that the certificate is invalid in some…

Read More

Documenting vCenter Privileges with PowerCLI

A customer that I'm working with at present asked this week if the minimum privileges required for vRA to access a vSphere Endpoint could be documented. As someone who isn't a fan of unnecessary wheel re-invention, my initial response was to direct them to the relevant VMware documentation (vRA 7.3 vSphere Agent Requirements). Then they explained why that wouldn't quite cover their requirement. I won't explain exactly why, but they wanted a matrix that showed exactly what privileges each of the vRealize products (and associated management packs) needed in vCenter to provide to their security team. Somewhere in the…

Read More

Root password expired on vCenter VCSA 6.5

I thought I'd update my homelab's primary vCenter to the latest and greatest (6.5 update 1d), when I encountered an issue with the root password.┬áThe update showed up ok in the appliance's VAMI interface and I selected to install it but an error quickly showed up: Not ready, huh? When I clicked on the “Show Details” button, I saw a message informing me that the root password had expired or expiring soon: Well ok, I'll go and reset it and turn off the expiry I thought. (That process is covered in the vCenter documentation.) But noooo,…

Read More

vCenter's Number - Is It Up?

(This is all based on information that's in the public domain at the time of writing and is all my own opinion. I may very well be wrong!) ESXi first saw the light of day as version 3.5 in 2007 / 2008. Rumours were rife after ESXi 4.0 was released in 2009 that the clock was now ticking on ESX “Classic”. With the release of 4.1 in 2010 VMware finally confirmed the rumours and, from 5.0 onwards it's been ESXi only. You know this already of course if you've been working with vSphere for any…

Read More

Configuring vCenter Orchestrator

Article by Michael Poore (@mpoore) vCenter Orchestrator (vCO) is a no charge extra for vCenter Server owners. In fact the binaries are installed alongside vCenter Server itself. This post covers what you need to configure vCO and start to use it. It's based on the GA release of vCenter 5.0. (Of course I should point out that other orchestration products are available.) Pre-requisites If you've met the pre-requisites for vCenter Server, you've also met them for vCO. If you've installed vCenter Server, the vCO client and server binaries are already present on your vCenter server. The only thing left…

Read More

Trying vCenter CapacityIQ

Previously I have posted about trying out vCenter Operations. Now the trial, assuming that you went down that route, is actually for vCenter Operations Advanced version. This includes vCenter CapacityIQ. It would be remiss of me not to talk about that too so here goes… I'm going to assume that CapacityIQ has already been downloaded. After all, you signed up for the vCenter Operations trial didn't you? As with the Operations VM, CapacityIQ is delivered in an OVF package and installing it is as easy as: 1) – Open your vSphere Client and select “Deploy OVF Template……

Read More

Trying vCenter Operations

As I mentioned a little while ago, vCenter Operations is a new management product that VMware are bringing out. Well, actually they've now brought it out as of Monday. I thought I'd check it out… Downloading To sign up for a trial and download vCenter Operations, you simply need to head over to VMware's “Support and Downloads” page and expand the “Infra & Ops Management” section. Follow the download link, register for a free trial, accept the Ts & Cs and download the software. vCenter Operations comes as virtual appliance (you download an OVA file)…

Read More

Released: vCenter 2.5 Update 6

vCenter 2.5 Update 6 was released on Friday. Whilst I'm not working with any 3.5 / 2.5 environments at the moment this is good news because Windows Server 2008 R2 guest customisations have been added. Also added is support for Firefox 3.x using vCenter Web Access. The full release notes are here. I'm going to stick my neck out a bit and suggest that this may be the final update to vCenter 2.5 before it reaches the end of General Support in May.…

Read More