6.2
Table Of Contents
- IaaS Integration for Multi-Machine Services
- Contents
- IaaS Integration for Multi-Machine Services
- Introduction to Multi-Machine Services
- Configuring Network and Security Integration
- Configuring vRealize Orchestrator Endpoints
- Create a vSphere Endpoint for Networking and Security Virtualization
- Run the Enable Security Policy Support for Overlapping Subnets Workflow in vRealize Orchestrator
- Creating a Network Profile
- Configuring a Reservation for Network and Security Virtualization
- Optional Configurations for Multi-Machine Services
- Creating Multi-Machine Blueprints
- Specifying Scripts for Multi-Machine Service Provisioning
- Specifying Custom Properties for Multi-Machine Services
- Blueprint Action Settings for Multi-Machine Services
- Create a Multi-Machine Blueprint
- Specify Blueprint Information for a Multi-Machine Blueprint
- Specify Build Information for a Multi-Machine Blueprint
- Specify Network Information for a Multi-Machine Blueprint
- Specify Scripting Information for a Multi-Machine Blueprint
- Add Multi-Machine Blueprint Custom Properties
- Specify Actions for Multi-Machine Blueprints
- Publish a Blueprint
- Configuring Multi-Machine Blueprints for Network and Security Virtualization
- Managing Multi-Machine Services
You can also add security groups on the Network tab of the New or Edit Reservation page. All multi-
machine components provisioned through the reservation are assigned to all of the security groups you
select. For more information about adding security groups through the reservation, see Create a
Reservation.
Security policies, security groups, and security tags appear for selection only if there are no existing
component machines provisioned from this multi-machine blueprint. If a component machine is
provisioned, then you cannot edit the security settings of the machine.
Familiarize yourself with the security features that can be applied to a multi-machine blueprint. See
Applying Security on a Component Machine.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
n
Create a multi-machine blueprint that contains at least one virtual component blueprint. See Create a
Multi-Machine Blueprint.
n
Verify that the supported version of VMware Tools is installed on the component machines. See NSX
Installation and Upgrade Guide.
n
Verify that the NSX endpoint is configured to use the vRealize Automation security policy. See Run
the Enable Security Policy Support for Overlapping Subnets Workflow in vRealize Orchestrator.
n
Verify that the security policies, security groups, and security tags are defined in the NSX
environment. See NSX Administration Guide.
Procedure
1 Select Infrastructure > Blueprints > Blueprints.
2 Locate a multi-machine blueprint with at least one virtual component blueprint.
3 Click Edit in the drop-down menu.
4 (Optional) Verify that a transport zone is selected.
a Click the Network tab on the Edit Blueprint page.
b Select a transport zone from the Transport zone drop-down box.
5 Click the Build Information tab.
6 Locate a blueprint in the Components table that has editable network settings.
Look for Edit in the Network column.
7 Click the Security tab.
8 Select one or more security policies check boxes in the Security policies list.
9 Select one or more security group check boxes in the Security groups list.
10 Select one or more security tags check boxes in the Security tags list.
11 Click OK.
IaaS Integration for Multi-Machine Services
VMware, Inc. 51