2.7
Table Of Contents
- VMware vFabric Data Director Administrator and User Guide
- Contents
- About VMware vFabric Data Director Administrator and User Guide
- VMware vFabric Data Director Overview
- Managing Data Director Resources
- Resource Management Overview
- Resource Bundles and Resource Pools
- Storage Resources and Data Director
- System Resource Bundle
- Resource Assignment
- vSphere Resource Pools and Data Director
- Viewing Resource Information
- Create the System Resource Pool
- Create the System Resource Bundle
- Monitor Resource Usage
- Create a Resource Pool
- Create a Resource Bundle
- Assign a Resource Bundle to an Organization
- Perform Advanced Cluster Configuration
- Managing Users and Roles
- User Management Overview
- Authenticating Users
- Role-Based Access Control
- Predefined Roles
- Privileges
- Propagation of Permissions and Roles
- Organization Privileges and Permissions
- Add Users to Your Organization
- Add Roles to an Organization
- Grant a Permission to a User
- Modify Organization Security Settings
- About vCenter Single Sign-On
- Register vFabric Data Director with the vCenter Single Sign-On Service
- Import vCenter Single Sign-On Service Users
- Remove vCenter Single Sign-On Registration Before Uninstalling vFabric Data Director
- Building DBVMs and Base DB Templates
- Database Virtual Machine OVA Files
- Deploy a DBVM OVA File
- Disk Configuration for DBVMs and DB Templates
- Build an Oracle, SQL Server, or Empty Base DBVM
- Build a MySQL Base DBVM
- Build an Oracle and SUSE Linux Base DBVM
- Build an Oracle DBVM with a Custom Linux Operating System
- Requirements for the Kickstart File
- Build a Base DBVM with a Custom Operating System
- Create and Validate a Base DB Template
- Database Update Configuration
- Configure a vFabric Postgres Update Chain
- Update an Oracle Database
- Identify Existing Target DBVM
- Create a Base Database VM from an Existing Template
- Apply a Patch to the Base Database Virtual Machine
- Convert a Base DBVM into a Base DB Template
- Validate a Base DB Template
- Assign a Base DB Template to a Resource Bundle
- Enable a Base DB Template
- Configure an Oracle Update Chain
- Update a Database
- Managing Organizations
- IP Whitelists
- Managing Database Groups
- Managing Database Templates
- Managing Databases
- Database Lifecycle
- Requirements for Creating Databases
- Database Creation
- Using Tags
- Managing the Organization Catalog
- Batch Operations and Scheduled Tasks
- Updating Databases
- Database Administration
- Cloning Databases
- Managing Database Entities
- Safeguarding Data
- Backup Strategies
- Backup Types
- Backup Template Settings
- Preconfigured Backup Templates
- Select a Database Backup Template
- Schedule Regular Database Backups
- Create a Database Snapshot
- Recover a Database from Backup
- Import Backups
- Recover a Database from Last State
- Use VMware Data Recovery to Back Up Data Director
- Database End of Life and Backups
- Perform Point-in-time Recovery of Management Server Database
- Add Pre-Action and Post-Action Scripts to the DBVM for Selected Agents
- High Availability and Replication
- Monitoring the Data Director Environment
- Managing Licenses
- IP Pool Management
- VMware vCloud Director Integration
- Reconfiguring Data Director Networks
- Change the vCenter IP Address
- Reconfigure the Web Console Network Mapping or Network Adapter
- Reconfigure the vCenter Network Mapping
- Reconfigure the vCenter Network Adapter Settings
- Reconfigure the DB Name Service Network or DB Name Service Network Adapter
- Reconfigure the Internal Network or Internal Network Adapter Mapping
- Verify Network Settings in Data Director
- Reconfigure the Database Access Network Used by a Database Group
- Modify IP Pool Settings
- Managing SSL Keys and Certificates
- Regenerate Management Server Key and Certificate
- Import Management Server Key and Certificate
- Edit Management Server Certificate
- Regenerate DB Name Server Key and Certificate
- Import DB Name Server Key and Certificate
- Edit DB Name Server Certificate
- Regenerate DBVM Key and Certificate
- Import DBVM Key and Certificate
- Edit DBVM Certificate
- Data Director Troubleshooting
- vCenter Server Stops Responding
- Disk Usage Exceeds Acceptable Levels
- Resource Bundles Become Unusable Because DRS Is Disabled
- Missing Resource Pool
- Troubleshooting for SSL Communication
- Database Cannot Be Connected Using the JDBC Connection String
- Unable to Import or Login Users of the Single Sign-On Service
- Index
applies only to the system. If you create a role in an organization, it applies only
to the organization. Organizations have no visibility into each others' roles. If
two organizations in the same Data Director data cloud each have a role that
has the same name, those roles are distinct within each organization.
One user can have multiple roles within an organization. Users can have access
to multiple organizations and can have multiple roles in each organization.
A user can have different roles for different objects. For example, if you have
two database groups in your organization, DBG1 and DBG2, you can grant the
Database Admin role to a particular user on DBG1 and grant that user the DB
User role on DBG2. These assignments might allow the user to perform
administrative tasks in DBG1, but not in DBG2.
Predefined Roles
Data Director provides the predefined roles of system administrator, user administrator, and organization
administrator. Predefined roles provide a starting point for administering Data Director users and roles and
for defining custom roles. You can also create custom roles.
Organization
administrator role
Organization adminstrators manage their organizations. They control which
users can access the organizations, how users request access to the
organizations, and what those users can see and do within the organization.
This role has all privileges on the organization for which it is created.
Organization administrators invite users to join the organization, grant access,
roles, and permissions to users in the organization, create database groups, and
can create databases. You can choose to create an administrator user when you
create a new organization, or you can select an existing user as the new
organization administrator.
Organization administrators perform all user management tasks within their
organizations, including the following.
n
Add users to organizations, database groups, and databases.
n
Modify user settings.
n
Remove users from organizations, database groups, and databases.
n
Create roles.
n
Grant privileges and permissions to roles and to individual users.
n
View users, roles, and permissions granted to users and roles.
Organization administrators can view, grant, and revoke privileges on all
objects within their organizations, including database groups, databases, and
templates. Privileges include Create Database Groups and Modify Database
Configuration Templates.
System administrator
role
System administrators operate Data Director. The first system administrator
user is created during Data Director installation. This role has all system-level
privileges, including managing resources for the system and for organizations.
System administrators can see, grant, and revoke permissions at the system
level. The first system administrator configures Data Director, creates other
system administrators and system-level users, and creates initial organizations.
System administrators manage users at the system level. By default they do not
have access to organizations unless an organization administrator grants access
to them.
VMware vFabric Data Director Administrator and User Guide
36 VMware, Inc.