6.2
Table Of Contents
- Installation and Configuration
- Contents
- vRealize Automation Installation and Configuration
- Updated Information
- Installation Overview
- Preparing for Installation
- Minimal Deployment Checklist
- Minimal Deployment
- Distributed Deployment
- Distributed Deployment Checklist
- Distributed Installation Components
- Disabling Load Balancer Health Checks
- Certificate Trust Requirements in a Distributed Deployment
- Installation Worksheets
- Deploy Appliances for vRealize Automation
- Configuring Your Load Balancer
- Configuring Appliances for vRealize Automation
- Configure the Identity Appliance
- Configure the Primary vRealize Appliance
- Configuring Additional Instances of vRealize Appliance
- Enable Time Synchronization on the vRealize Appliance
- Configure Appliance Database on the Secondary vRealize Appliance
- Configure Appliance Database Replication on the Secondary Appliance
- Join a vRealize Appliance to a Cluster
- Disable Unused Services
- Validate the Distributed Deployment
- Test Appliance Database Failover
- Test Appliance Database Failback
- Validate Appliance Database Replication
- Install the IaaS Components in a Distributed Configuration
- Install IaaS Certificates
- Download the IaaS Installer
- Choosing an IaaS Database Scenario
- Install the Primary IaaS Website Component with Model Manager Data
- Install Additional IaaS Website Components
- Install the Primary Manager Service
- Install an Additional Manager Service Component
- Installing Distributed Execution Managers
- Configuring Windows Service to Access the IaaS Database
- Verify IaaS Services
- Installing Agents
- Set the PowerShell Execution Policy to RemoteSigned
- Choosing the Agent Installation Scenario
- Agent Installation Location and Requirements
- Installing and Configuring the Proxy Agent for vSphere
- Installing the Proxy Agent for Hyper-V or XenServer
- Installing the VDI Agent for XenDesktop
- Installing the EPI Agent for Citrix
- Installing the EPI Agent for Visual Basic Scripting
- Installing the WMI Agent for Remote WMI Requests
- Configuring Initial Access
- Configuring Additional Tenants
- Updating vRealize Automation Certificates
- Extracting Certificates and Private Keys
- Updating the Identity Appliance Certificate
- Updating the vRealize Appliance Certificate
- Updating the IaaS Certificate
- Replace the Identity Appliance Management Site Certificate
- Updating the vRealize Appliance Management Site Certificate
- Replace a Management Agent Certificate
- Troubleshooting
- Default Log Locations
- Rolling Back a Failed Installation
- Create a Support Bundle for vRealize Automation
- Installers Fail to Download
- Failed to Install Model Manager Data and Web Components
- Save Settings Warning Appears During IaaS Installation
- WAPI and Distributed Execution Managers Fail to Install
- IaaS Authentication Fails During IaaS Web and Model Management Installation
- Installation or Upgrade Fails with a Load Balancer Timeout Error
- Uninstalling a Proxy Agent Fails
- Validating Server Certificates for IaaS
- Server Times Are Not Synchronized
- RabbitMQ Configuration Fails in a High-Availability Environment
- Encryption.key File has Incorrect Permissions
- Log in to the vRealize Automation Console Fails
- Error Communicating to the Remote Server
- Blank Pages May Appear When Using Internet Explorer 9 or 10 on Windows 7
- Cannot Establish Trust Relationship for the SSL/TLS Secure Channel
- Cannot Log in to a Tenant or Tenant Identity Stores Disappear
- Adding an Endpoint Causes an Internal Error
- Error in Manager Service Communication
- Machine Requests Fail When Remote Transactions Are Disabled
- Credentials Error When Running the IaaS Installer
- Attempts to Log In as the IaaS Administrator with Incorrect UPN Format Credentials Fails with No Explanation
- Email Customization Behavior Has Changed
- Changes Made to /etc/hosts Files Might Be Overwritten
- Network Settings Were Not Successfully Applied
For workload distribution and failover, you may place multiple vRealize Appliances behind a load
balancer. In addition, you may place multiple IaaS Web servers and multiple IaaS Manager Service
servers behind their respective load balancers.
When using load balancers, do not allow the load balancers to send health checks at any time during
installation. Health checks might interfere with installation or cause the installation to behave
unpredictably.
n
When deploying vRealize Appliance or IaaS components behind existing load balancers, disable
health checks on all load balancers in the proposed configuration before installing any components.
n
After installing and configuring all of vRealize Automation, including all vRealize Appliance and IaaS
components, you may re-enable health checks.
Certiļ¬cate Trust Requirements in a Distributed
Deployment
For secure communication, vRealize Appliance relies on certificates to create the trusted relationships
between components.
The specific implementation of the certificates required to achieve this trust depends on your
environment.
To provide high availability and failover support, you might deploy load balanced clusters of components.
In this case, you obtain a multi-use certificate that includes each component in the cluster, and then copy
that multi-use certificate to each component in the cluster. You can use Subject Alternative Name (SAN)
certificates, chain certificates, wildcard certificates, or any other method of multi-use certification
appropriate for your environment as long as you satisfy the trust requirements. Depending on your load
balancer configuration, you may need to certify the load balancer as part of the multi-use certificate for
the cluster.
For example, if you have a load balancer configuration that requires a certificate on the load balancer as
well as its components, you might obtain a SAN certificate to certify web-load-
balancer.eng.mycompany.com, web-component-1.eng.mycompany.com, and web-
component-2.eng.mycompany.com. You would copy that single multi-use certificate to the load balancer
and each of the appliances and then register the certificate on the Web component machines.
The Trust Requirements diagram illustrates the required trust relationships among clusters and assumes
you have configured trust as necessary between the load balancer and the nodes underneath it.
Installation and Configuration
VMware, Inc. 57