Installation guide
Table Of Contents
- VMware vCenter Configuration Manager Administration Guide
- Contents
- About This Book
- Getting Started with VCM
- Installing and Getting Started with VCM Tools
- Configuring VMware Cloud Infrastructure
- Virtual Environments Configuration
- Configure Virtual Environments Collections
- Configure Managing Agent Machines for Virtual Environment Management
- Obtain the SSL Certificate Thumbprint
- Configure vCenter Server Data Collections
- Configure vCenter Server Virtual Machine Collections
- Configure vCloud Director Collections
- Configure vCloud Director vApp Virtual Machines Collections
- Configure vShield Manager Collections
- Configure ESX Service Console OS Collections
- Configure the vSphere Client VCM Plug-In
- Running Compliance for the VMware Cloud Infrastructure
- Create and Run Virtual Environment Compliance Templates
- Create Virtual Environment Compliance Rule Groups
- Create and Test Virtual Environment Compliance Rules
- Create and Test Virtual Environment Compliance Filters
- Preview Virtual Environment Compliance Rule Groups
- Create Virtual Environment Compliance Templates
- Run Virtual Environment Compliance Templates
- Create Virtual Environment Compliance Exceptions
- Resolve Noncompliant Virtual Environments Template Results
- Configure Alerts and Schedule Virtual Environment Compliance Runs
- Configuring vCenter Operations Manager Integration
- Auditing Security Changes in Your Environment
- Configuring Windows Machines
- Configure Windows Machines
- Windows Collection Results
- Getting Started with Windows Custom Information
- Prerequisites to Collect Windows Custom Information
- Using PowerShell Scripts for WCI Collections
- Windows Custom Information Change Management
- Collecting Windows Custom Information
- Create Your Own WCI PowerShell Collection Script
- Verify that Your Custom PowerShell Script is Valid
- Install PowerShell
- Collect Windows Custom Information Data
- Run the Script-Based Collection Filter
- View Windows Custom Information Job Status Details
- Windows Custom Information Collection Results
- Run Windows Custom Information Reports
- Troubleshooting Custom PowerShell Scripts
- Configuring Linux, UNIX, and Mac OS X Machines
- Linux, UNIX, and Mac OS X Machine Management
- Linux, UNIX, or Mac OS X Installation Credentials
- Configure Collections from Linux, UNIX, and Mac OS X Machines
- Configure Installation Delegate Machines to Install Linux, UNIX, and Mac OS X...
- Configure the HTTPS Bypass Setting for Linux Agent Installations
- Enable Linux, UNIX, and Mac OS X Agent Installation
- Add and License Linux, UNIX, and Mac OS X Machines for Agent Installation
- Install the VCM Agent on Linux, UNIX, and Mac OS X Operating Systems
- Collect Linux, UNIX, and Mac OS X Data
- Linux, UNIX, and Mac OS X Collection Results
- Configure Scheduled Linux, UNIX, and Mac OS X Collections
- Patching Managed Machines
- Patch Assessment and Deployment
- Prerequisite Tasks and Requirements
- Manually Patching Managed Machines
- Getting Started with VCM Manual Patching
- Configuring An Automated Patch Deployment Environment
- Deploying Patches with Automated Patch Assessment and Deployment
- Configure VCM for Automatic Event-Driven Patch Assessment and Deployment
- Generate a Patch Assessment Template
- Run a Patch Assessment on Managed Machines
- Add Exceptions for Patching Managed Machines
- Configure the VCM Administration Settings
- Generate a Patch Deployment Mapping
- Configure VCM for Automatic Scheduled Patch Assessment and Deployment
- How the Linux and UNIX Patch Staging Works
- How the Linux and UNIX Patching Job Chain Works
- How the Deploy Action Works
- Patch Deployment Wizards
- Running Patching Reports
- Running and Enforcing Compliance
- Provisioning Physical or Virtual Machine Operating Systems
- Provisioning Software on Managed Machines
- Using Package Studio to Create Software Packages and Publish to Repositories
- Software Repository for Windows
- Package Manager for Windows
- Software Provisioning Component Relationships
- Install the Software Provisioning Components
- Using Package Studio to Create Software Packages and Publish to Repositories
- Using VCM Software Provisioning for Windows
- Related Software Provisioning Actions
- Configuring Active Directory Environments
- Configuring Remote Machines
- Tracking Unmanaged Hardware and Software Asset Data
- Managing Changes with Service Desk Integration
- Index
Procedure
1. "Generate a Patch Assessment Template" on page 171
To configure VCM for automatic, event-driven patch deployment, you must generate a patch
assessment template to use with the automatic patch deployment mapping.
2. "Run a Patch Assessment on Managed Machines" on page 172
You must run the patch assessment template to collect patch status data from the managed machines.
3. "Add Exceptions for Patching Managed Machines" on page 172
You can optionally add patching exceptions for the automatic patch deployment.
4. "Configure the VCMAdministration Settings" on page 173
VCM provides settings for automatic patch deployment, including template and group membership,
patch applicability, and default threshold data age. You can set the default repository host, repository
path, and Software Content Repository (SCR) Tool base path settings.
5. "Generate a Patch Deployment Mapping" on page 175
VCM provides settings for automatic patch deployment, including template and group membership,
patch applicability, and default threshold data age. You can set the default repository host, repository
path, and Software Content Repository (SCR) Tool base path settings.
What to do next
n
For Linux and UNIX patching, after a job triggers, view the job chain in the VCM Job Manager, and
finished job chain jobs in Job Manager History. See "How the Linux and UNIX Patching Job Chain
Works" on page 178.
n
(Optional) You can schedule an automatic patch deployment. When you schedule VCM to run an
automatic patch deployment later, and collected patch data or scheduled the patch data collection after
you created the automatic deployment but before the scheduled time to run the automatic deployment.
VCM begins the automatic patch deployment at the scheduled time. See "Configure VCM for
Automatic Scheduled Patch Assessment and Deployment" on page 176.
Generate a Patch Assessment Template
To configure VCM for automatic, event-driven patch deployment, you must generate a patch assessment
template to use with the automatic patch deployment mapping. VCM uses the patch assessment template
to collect patch assessment data from Linux, UNIX, or Windows managed machines in your environment.
With automatic, event-driven patch deployment, you configure a patch assessment template with a
machine group, and VCM deploys patches to the Linux, UNIX, or Windows patching assessment template
that you associate with the machine group.
To create a dynamic membership of bulletins for the Linux and UNIX patch assessment, you can use
dynamic patching assessment templates to apply filter criteria. After new patch content is available, VCM
updates the bulletin membership of a dynamic assessment template. To exclude certain patches from
being applied to a specific set of managed machines or from all managed machines in your environment,
you can create patching exceptions for dynamic and static patching assessment templates.
Prerequisites
Review the steps to configure the automatic, event-driven patch assessment and deployment. See
"Configure VCMfor Automatic Event-Driven Patch Assessment and Deployment" on page 170.
Patching Managed Machines
VMware, Inc.
171