5.5
Table Of Contents
- vCloud Director Installation and Upgrade Guide
- Contents
- VMware vCloud Director Installation and Upgrade Guide
- Overview of vCloud Director Installation, Configuration, and Upgrade
- vCloud Director Architecture
- Configuration Planning
- vCloud Director Hardware and Software Requirements
- Browsers That vCloud Director Supports
- Summary of Network Configuration Requirements for vCloud Director
- Installing and Configuring a vCloud Director Database
- Create SSL Certificates
- Installing and Configuring vShield Manager
- Installing and Configuring an AMQP Broker
- Download and Install the VMware Public Key
- Creating a vCloud Director Server Group
- Install and Configure vCloud Director Software on the First Member of a Server Group
- Configure Network and Database Connections
- Install vCloud Director Software on Additional Members of a Server Group
- Install Microsoft Sysprep Files on the Servers
- Start or Stop vCloud Director Services
- Uninstall vCloud Director Software
- Upgrading vCloud Director
- vCloud Director Setup
- Cell Management Tool Reference
- Index
n
Verify that you have access to a computer that has a Java version 6 runtime environment, so that you
can use the keytool command to create the certificate. The vCloud Director installer places a copy of
keytool in /opt/vmware/vcloud-director/jre/bin/keytool, but you can perform this procedure on any
computer that has a Java version 6 runtime environment installed. Certificates created with a keytool
from any other source are not supported for use with vCloud Director. Creating and importing the
certificates before you install and configure vCloud Director software simplifies the installation and
configuration process. These command-line examples assume that keytool is in the user's path. The
keystore password is represented in these examples as passwd.
Procedure
1 Create an untrusted certificate for the HTTP service.
This command creates an untrusted certificate in a keystore file named certificates.ks.
keytool -keystore certificates.ks -storetype JCEKS -storepass passwd -genkey -keyalg RSA -
alias http
2 Create an untrusted certificate for the console proxy service.
This command adds an untrusted certificate to the keystore file created in Step 1.
keytool -keystore certificates.ks -storetype JCEKS -storepass passwd -genkey -keyalg RSA -
alias consoleproxy
The certificate is valid for 90 days.
3 To verify that all the certificates are imported, list the contents of the keystore file.
keytool -storetype JCEKS -storepass passwd -keystore certificates.ks -list
4 Repeat Step 1 through Step 3 on each of the remaining vCloud Director servers.
What to do next
If you created the certificates.ks keystore file on a computer other than the server on which you
generated the list of fully qualified domain names and their associated IP addresses, copy the keystore file to
that server now. You will need the keystore path name when you run the configuration script. See
“Configure Network and Database Connections,” on page 26.
NOTE Because the vCloud Director configuration script does not run with a privileged identity, the keystore
file and the directory in which it is stored must be readable by any user.
Installing and Configuring vShield Manager
vCloud Director depends on vShield Manager to provide network services to the cloud. Install and
configure vShield Manager before you begin installing vCloud Director. vShield Manager is included in the
VMware vCloud Networking and Security download.
You must associate each vCenter Server that you add to vCloud Director with a unique instance of vShield
Manager. For information about the network requirements and supported versions of vShield Manager, see
“vCloud Director Hardware and Software Requirements,” on page 8.
IMPORTANT This procedure applies only to new installations of vCloud Director. If you are upgrading an
existing installation of vCloud Director, you can optionally upgrade its associated vShield Manager
installation. A new release of vShield Manager cannot work with an existing release of vCloud Director. See
“Upgrade vShield Manager,” on page 40.
Prerequisites
For detailed information about vShield Manager, visit the VMware vCloud Networking and Security
Documentation Center at https://www.vmware.com/support/pubs/vshield_pubs.html.
vCloud Director Installation and Upgrade Guide
20 VMware, Inc.